This article uses bank and credit union regulatory references to back-up recommended best practices for business continuity planning.
As states announce their intentions for the new R-SAT, we will add them to this list. We expect most state-charted institutions will be contacted about the R-SAT.
To ensure your organization's BCP is ready, read our article to help your organization prepare for the time before, during, and after a hurricane.
In August 2020, the CISA published an alert regarding a malicious actor using COVID-19 as an opportunity for phishing and compromising credentials.
This article will help you make informed decisions about when certain processes can be restored and help you determine appropriate Recovery Time Objectives.
On Tuesday, October 13, 2020, a Ransomware Self-Assessment Tool (R-SAT) was released to state-chartered financial institutions. Read this article for FAQs about the R-SAT.
Creating a step-by-step system to evaluate and review your vendor due diligence documentation can ease the burden of vendor oversight.
Learn the differences between the term vendor and third-party to help you document them correctly. Includes definitions from the FFIEC, FDIC, FRB, NCUA, and OCC.
Tandem has received questions regarding InTREx-CU that the NCUA has announced. Learn more about the InTREx, how it compares to the ACET, and how you can prepare.
In the process of conducting a work from home risk assessment, once you have identified reasonably foreseeable threats to your organization and data, the next step is to evaluate and implement controls.
Securing customer, member, and organization data while employees work remotely takes on a unique angle when organizations are doing so in during a pandemic.
