Resources

Webinars

How to Write an AI Policy

In this webinar, we’ll break down how to create an AI policy that actually works and one that protects your organization, encourages responsible use, and builds on the systems you already have in place. Whether you’re starting from scratch or updating existing guidelines, we’ll help you shape a policy that fits your operations, meets compliance needs, and reflects your company’s culture. You’ll learn how to expand on current practices like vendor management and security policies, while adding AI-specific pieces like acceptable use, data protection, and how to equip your team to use AI tools wisely and safely.

Key Takeaways:

- Why an AI policy matters and how to tailor it to your organization
- How to define the scope and assign roles for AI oversight
- Tips for managing AI risks with vendors and existing security policies
- What to include in acceptable use and employee training
- Actionable steps to build or improve your AI policy

Register

Regulation S-P: How to Comply with the New Amendments

The Securities and Exchange Commission (SEC) has finalized amendments to Regulation S-P (17 CFR Part 248) which are effective August 2, 2024. The updates require certain financial institutions regulated by the SEC to adopt incident response policies and procedures to protect customer information, per the Gramm-Leach-Bliley Act (GLBA). The amendments also update requirements for the safeguarding and disposal of certain information.

Join this free session to engage with our GLBA-compliance experts, as you work to implement the new requirements of Regulation S-P: Privacy of Consumer Financial Information and Safeguarding Personal Information.

This session will include:

- A compliance analysis of Regulation S-P and the recent updates.
- Recommendations for how to comply with the new cybersecurity amendments.
- Information security and incident response guidance and resources for financial institutions.
- Best practices for navigating incident communications.

Bonus Content:

After the hour-long educational session, you are invited to join us for 15 extra minutes as we demonstrate how Tandem Incident Management and Tandem Vendor Management can help you build your incident response plan and track incidents when they occur.

Register

Level Up Your Table Top Exercises

A tabletop exercise is a technique used to review a company’s business continuity and incident response plans. Just like our tables at home, sometimes our tabletops at work can get a little cluttered and could use some TLC. Join this session for a refresher on tabletop etiquette. We will look at what regulatory guidance has to say, review best practices for getting buy-in and creating an engaging environment, and walk through a tabletop exercise together.

Register

Past Recordings

Building a Practical BCP for Your Financial Institution

View

Replacing the FFIEC CAT: A Guide to Cybersecurity Frameworks

View

An Overview of the NCUA's New Succession Planning Rule

View

Connecting the Dots: Subcontractor Relationship Management

View

When Business is Personal: A Chat about MDM & BYOD

View

The State of Cybersecurity in the Financial Industry

View

The New FFIEC Development, Acquisition, and Maintenance Booklet

View

Impact of AI on the Future of Cybersecurity

View

Quantum Computing for Humans

View

Your Guide to Effective Vulnerability & Patch Management

View

A Case Study of What NOT to Do in Vendor Management

View

The Ins & Outs of Your Annual Information Security Report to the Board

View
Load More