The Cybersecurity and Infrastructure Security Agency (CISA) published version 2.0 of their Cross-Sector Cybersecurity Performance Goals (CPGs). Let’s take a look at the CPGs and what changed in this latest version.
On September 1, 2025, Texas Senate Bill 2610 (SB 2610) went into effect. This new law was designed to support small businesses by creating a legal “safe harbor” for those that proactively adopt strong cybersecurity practices. Here’s what you need to know.
A cybersecurity control self-assessment is a process in which an organization benchmarks its own security practices against established standards. But what does that mean exactly?
Learn the complementary, but distinct differences between a risk assessment and a cybersecurity assessment, and how they both contribute to understanding an organization’s security posture.
The NIST Cybersecurity Framework (CSF) is a widely adopted, flexible framework that can help organizations assess their cyber readiness. You might find yourself asking questions like "Where do I start?" This blog is here to walk you through those common questions.
With the FFIEC retiring the CAT, we surveyed 400+ financial institutions to reveal how they plan to transition and which cybersecurity frameworks they prefer next.
On August 29, 2024, the FFIEC announced they would be sunsetting the Cybersecurity Assessment Tool (CAT) effective August 31, 2025. For the last ten years, the CAT has been a staple for many financial institutions’ cybersecurity programs. As a result, many institutions now face the question: “Which cybersecurity framework should I use?” Let’s talk about how to pick a cybersecurity framework.
The purpose of this article is to provide a comprehensive timeline of the FFIEC CAT and how its implementation has changed over the years.
In this article, we discuss the increasingly adopted definition of risk in today's cybersecurity world as well as its associated opportunities.
In this article, we review 5 things that help determine how often you should complete the FFIEC Cybersecurity Assessment Tool (CAT).
In this article, we answer common questions the Tandem team has received regarding InTREx-CU and how it will be addressed in Tandem.
