New Third-Party Risk Management Guidance: What Community Banks Need to Know
Three of the federal banking agencies published new guidance on Third-Party Relationships: Risk Management. Here are eight things community banks need to know about it.
Thanks for visiting our
Tandem Blog
Get our blog posts straight to your inbox.
You have been successfully subscribed to our newsletter.
Top BCP Software Features to Consider Before You Buy
In this article, we’ll look at top features to consider and questions to ask when evaluating a BCP/DR software solution, including features related to business impact analysis, user access, emergency communications, ease of use and reliability, and reporting.
An Overview of Freddie Mac’s Updated Information Security Requirements
Published Date:
This article is an introduction to the new requirements released by Freddie Mac, as well as a summary of what’s new, what’s changed, and what you may need to do about it.
Financial Institutions & Quantum Computing: A Cybersecurity Compliance Timeline
In this article, we take a look at why quantum computing is a cybersecurity risk, what requirements have been released so far, and what steps need to be taken to ensure compliance.
5 Things Credit Unions Need to Know about the Information Security Examination (ISE)
So, what exactly are these new Information Security Examination (ISE) procedures? How are they different from prior NCUA information security examination materials? Here are five things credit unions need to know about the ISE.
Credit Unions: What to Expect in Your 2023 NCUA IT Exam
Published Date:
This article will tell you what you can expect in your 2023 exam and take you through a bit of the history of each acronym.
Top Phishing Awareness Security Software Features to Consider Before You Buy
In this article, we will look at the top features to consider when evaluating a phishing security awareness software.
Policies vs. Standards vs. Controls vs. Procedures
In this article, we answer the question, "What’s the difference between policies, standards, controls, and procedures?" by setting definitions, looking at guidance, and providing some examples.
Key Sections of an Information Security Policy
There are a lot of ways to write a policy and there are equally as many things to avoid. At Tandem, when we sit down to write a policy, we break our policies into the following key sections.
How to Conduct a Policy Review Meeting
While Boost’s practices vary from client-to-client, based on things like the institution’s size, risk, and complexity, their practices can be summed up in six steps.
5 Ways to Improve Your Phishing Test Results
To make sure your phishing tests are most effective at securing your business, preparing your teams, and keeping operations running smoothly, here are five things to consider before sending your next phishing test.