How Financial Institutions Are Preparing for AI with Policies and Training
We polled over 200 information security professionals, primarily at financial institutions, on how they are implementing polices and training on AI in the workplace.
Thanks for visiting our
Tandem Blog
Get our blog posts straight to your inbox.
You have been successfully subscribed to our newsletter.
Updated NIST Incident Response Guidance: SP 800-61 Rev. 3
On April 3, 2025, NIST released a new guide covering Incident Response Recommendations and Considerations for Cybersecurity Risk Management. Let’s dive into what’s new and what it means for your incident response plans.
Frequently Asked Questions about the NIST Cybersecurity Framework (CSF)
The NIST Cybersecurity Framework (CSF) is a widely adopted, flexible framework that can help organizations assess their cyber readiness. You might find yourself asking questions like "Where do I start?" This blog is here to walk you through those common questions.
What Financial Institutions Say They Are Using to Replace the FFIEC CAT
With the FFIEC retiring the CAT, we surveyed 400+ financial institutions to reveal how they plan to transition and which cybersecurity frameworks they prefer next.
Building a Data Compliance Program for the DOJ’s New Security Rule with Tandem
The Department of Justice recently finalized a new rule requiring anyone who is performing "restricted transactions" to implement a Data Compliance Program by October 6, 2025. Let's take a look at how you can build this Data Compliance Program with Tandem.
What the DOJ’s New Security Rule Means for Financial Institutions
On April 8, 2025, a final rule from the DOJ went into effect on the security of personal and government related data. While this rule applies broadly, let's take a look at the terms and requirements as they relate to financial institutions.
How Soon Should Vulnerabilities Be Patched?
Vulnerability and patch management are essential for maintaining security-leaving vulnerabilities unaddressed is like leaving your front door wide open. But how quickly must you patch to remain secure and compliant? Let's break it down.
Riding into the Sunset: A Community Financial Institution’s Guide to IT Asset End-of-Life
When IT assets hit their sunset phase, most people would rather be anywhere else. But if you work for a financial institution, managing IT asset end-of-life (EOL) isn’t just a good idea; it’s a requirement.
How can you handle EOL without the stress? Let’s take a look.
How to Write an AI Policy
As artificial intelligence (AI) becomes more integrated with business operations, it’s increasingly important to develop clear policies to manage AI-related risks, maintain compliance, and uphold ethical standards. Here’s what you should consider when creating an AI policy for your organization.
How to Conduct an Effective Tabletop Exercise
Tabletop exercises are often labeled as pain points and seen as just another “to do” item on the compliance checklist. Yet, if done well, they can be a huge value-add to your organization’s resilience.
This article will give six simple steps to conduct an effective tabletop exercise.
Are Credit Unions Ready for the NCUA Succession Planning Rule?
Succession planning is essential for credit unions to ensure smooth leadership transitions and maintain operational stability. With the recent NCUA Succession Planning Rule, all federally insured credit unions must have a formal succession plan. But how prepared are credit unions to meet this new requirement?
During a recent webinar about the new Succession Planning Rule, 70 credit unions participated in poll questions assessing credit unions' readiness and resulting in some key insights.