How Financial Institutions Are Preparing for AI with Policies and Training
We polled over 200 information security professionals, primarily at financial institutions, on how they are implementing polices and training on AI in the workplace.
Thanks for visiting our
Tandem Blog
Get our blog posts straight to your inbox.
You have been successfully subscribed to our newsletter.
How Soon Should Vulnerabilities Be Patched?
Vulnerability and patch management are essential for maintaining security-leaving vulnerabilities unaddressed is like leaving your front door wide open. But how quickly must you patch to remain secure and compliant? Let's break it down.
Riding into the Sunset: A Community Financial Institution’s Guide to IT Asset End-of-Life
When IT assets hit their sunset phase, most people would rather be anywhere else. But if you work for a financial institution, managing IT asset end-of-life (EOL) isn’t just a good idea; it’s a requirement.
How can you handle EOL without the stress? Let’s take a look.
Updated Ransomware Self-Assessment Tool (R-SAT 2.0)
Published Date:
On Tuesday, October 24, 2023, regulators published an updated version of the Ransomware Self-Assessment Tool (R-SAT). In this blog, we’ll discuss what the R-SAT is, what got updated, and what you need to do about it.
What Not to Write: 5 Common Policy Writing Mistakes
The purpose of this article is to put policies into a 360-degree mirror and shed some light on a few areas which may need a little care.
Top Policies Software Features to Consider Before You Buy
In this article, we will look at the top features to consider when evaluating a policies software solution, including features related to policy wording and structure, custom policies and categories, creating an acceptable use policy, download documents, and more.
Reportable Cyber Incidents: An Overview of the NCUA’s New Notification Rule
This article looks at the NCUA's Cyber Incident Notification Rule, including the final rule's development, key details, and required actions for credit unions.
An Overview of Freddie Mac’s Updated Information Security Requirements
Published Date:
This article is an introduction to the new requirements released by Freddie Mac, as well as a summary of what’s new, what’s changed, and what you may need to do about it.
Credit Unions: What to Expect in Your 2023 NCUA IT Exam
Published Date:
This article will tell you what you can expect in your 2023 exam and take you through a bit of the history of each acronym.
Policies vs. Standards vs. Controls vs. Procedures
In this article, we answer the question, "What’s the difference between policies, standards, controls, and procedures?" by setting definitions, looking at guidance, and providing some examples.
Key Sections of an Information Security Policy
There are a lot of ways to write a policy and there are equally as many things to avoid. At Tandem, when we sit down to write a policy, we break our policies into the following key sections.