At Tandem, we occasionally receive questions from our clients on the topic of an “IT audit risk assessment." Where did this concept come from, what exactly is it, and how would you begin to conduct one? Let’s find out.
In this article, we discuss the increasingly adopted definition of risk in today's cybersecurity world as well as its associated opportunities.
In this article, we review 5 things that help determine how often you should complete the FFIEC Cybersecurity Assessment Tool (CAT).
In this article, we answer common questions the Tandem team has received regarding InTREx-CU and how it will be addressed in Tandem.
An organization’s security is only as strong as its weakest element, and ransomware is a threat that exploits vulnerabilities to their fullest extent. As such, having a plan for responding to ransomware is key to an organization’s cyber resilience.
In this article, we will discuss our answers to frequently asked questions about this new program.
Insights from our recent State of Cybersecurity survey show interesting trends in cybersecurity spending for United States financial institutions.
In October 2020, the NIST published NISTIR 8286 over Integrating Cybersecurity and ERM. In this article, we will summarize some of the key concepts presented in the NIST document.
On July 19, 2021, the FDIC, FRB, and OCC published in the Federal Register a Proposed Interagency Guidance on Third-Party Relationships: Risk Management.
In part 1 of 8 in our 2021 survey report content series, we examine the current state of ISO management and staffing in the financial institution industry.
In this article, we will review the steps you can take to ensure incidents are classified effectively.
