MHA Consulting

FEBRUARY 22, 2024

Related on MHA Consulting: The ABCs of ERM: The Rise of Enterprise Risk Management An Exciting New Partnership A couple of weeks ago, MHA Consulting issued the announcement of its new partnership with Kroll, the global leader in enterprise risk management, executive security, and cybersecurity services.

BCM 52

BCM Risk Management Business Continuity Consulting 52

FS-ISAC

OCTOBER 13, 2023

This may not become “the” framework, as there are others like the NIST AI Risk Management Framework. Key Use Cases of AI in Cybersecurity There are 3 areas – Threats, Toil and Talent. The aim is to build on the framework to include other, more detailed recommendations and tooling.

Cybersecurity 69

Cybersecurity Financial Services Authentication Resilience 69

FS-ISAC

JULY 27, 2023

Jerry Perullo draws on more than two decades of experience, including as CISO at Intercontinental Exchange/New York Stock Exchange (ICE/NYSE), and recently as interim CISO at Silicon Valley Bank, to explain his framework for presenting cybersecurity risks and solutions to the Board. Yet, cybersecurity isn’t on the list.

Cybersecurity 52

Cybersecurity Vulnerability Banking Risk Management 52

Risk Management Monitor

MARCH 4, 2022

Concerns about escalating cyber activity around the crisis are a vivid reminder of the importance of knowing your threat model and adjusting your risk management priorities accordingly. For example, given the tragic events and breaking developments around the conflict, many may be glued to news or social media. “In

Management 56

Management Malware Cybersecurity Insurance 56

FS-ISAC

JULY 1, 2021

This radical and rapid expansion of the financial sector’s attack surface has meant that cybersecurity is increasingly front and center, not only of risk management but also of competitive considerations. CISO Seng Wei Keng says his firm thinks of itself as more of a tech company than a bank.

Banking 52

Banking Financial Services Cybersecurity Risk Management 52

Pure Storage

MAY 13, 2024

The last year has seen such attacks hit Bank of America , Home Depot, T-Mobile , Okta , and Citrix. To help, a new class of tools has appeared on the market: Third-party cybersecurity risk management (TPCRM) platforms can help manage both assessment and ongoing monitoring.

Audit 52

Audit Banking Benchmark Application 52

Fusion Risk Management

NOVEMBER 3, 2022

These requirements can apply in third-party risk scenarios but also more broadly across the enterprise where risk for misconduct exists. Adjacent to resilience obligations, many global regulations in the cybersecurity and data protection space contain provisions for cooperation with investigation and breach notification requirements.

Resilience 96

Resilience Cybersecurity Mitigation Risk Management 96

LogisManager

MAY 22, 2023

3 Steps to Prepare for 2024 and Beyond with the Risk Maturity Model The world is becoming increasingly complex and uncertain, and organizations must be prepared to face a wide range of risks that could impact their success. In uncertain times, it is crucial to have resources to analyze and demonstrate risks.

Risk Management 52

Risk Management Evaluation Banking Benchmark 52

LogisManager

MAY 22, 2023

3 Steps to Prepare for 2024 and Beyond with the Risk Maturity Model The world is becoming increasingly complex and uncertain, and organizations must be prepared to face a wide range of risks that could impact their success. In uncertain times, it is crucial to have resources to analyze and demonstrate risks.

Risk Management 52

Risk Management Evaluation Banking Benchmark 52

Pure Storage

FEBRUARY 21, 2024

Hong Kong The Hong Kong Monetary Authority (HKMA) issued a circular on operational resilience, OR-2 Supervisory Policy Manual, in May 2022, which aligns with Bank for International Settlements (BIS) standards issued in 2021. Financial firms will be required to demonstrate these capabilities through plans, testing, and reports.

Financial Services 59

Financial Services Resilience Audit Authorization 59

FS-ISAC

SEPTEMBER 8, 2021

For many years, the cybersecurity industry had no other use case for crypto and thought of regulation as a pipe dream. Some of the world’s largest banks and payments companies are working toward and executing strategies to allow their customers to buy, sell and use crypto as an everyday asset.

Banking 52

Banking Cybersecurity Internet Marketing 52

Fusion Risk Management

DECEMBER 4, 2023

In an era of constant change, the risks and threats to global organizations never sleep. Today’s practitioners recognize that they need dynamic risk management , operational resilience, and business continuity (BC) programs – and they need to be agile in implementing them.

Business Continuity 52

Business Continuity Resilience Risk Management Financial Services 52

Solutions Review

SEPTEMBER 27, 2021

The Best Governance, Risk, and Compliance Software. Description: Apptega is a cybersecurity and compliance management platform that makes it easy for users to access, build, manage, and report their cybersecurity and compliance programs. Fusion Risk Management. Platform: LogicGate Risk Cloud.

Government 92

Government Audit Risk Management Hospitality 92

MHA Consulting

MARCH 23, 2023

Collectively, these guidelines make up the FFIEC Business Continuity standard, whose purpose is to make sure the banks and other financial institutions that are required to follow it can continue to operate even if they are hit with a disruption.

BCM 74

BCM Impact Analysis Business Continuity Banking 74

Fusion Risk Management

JANUARY 24, 2023

and the EU operate with dedicated teams who work with the organization and local regulators to address the requirements that have been established by the Bank of England (BoE), Financial Conduct Authority (FCA), Prudential Regulation Authority (PRA), and other EU-based authorities. Generally, global firms with a heavy presence in the U.K.

Resilience 52

Resilience Financial Services All-Hazards Disaster Recovery 52

Risk Management Monitor

DECEMBER 3, 2021

An increasingly key theme year over year, resilience is at the root of the latest Excellence in Risk Management India report from Marsh and RIMS—and the RIMS Risk Forum India 2021 virtual event , where the report was officially released today. Doing so increases the ability to develop effective responses.

Resilience 45

Resilience Pandemic Risk Management Scenario Planning 45

Pure Storage

SEPTEMBER 5, 2023

Why Encryption is Key to Cost Efficient GDPR Compliance by Pure Storage Blog The EU Digital Operational Resilience Act (DORA) reinforces the principles of the GDPR (adding to our GDPR compliance) to strengthen data protection measures for banking institutions operating within the EU.

Banking 52

Banking Travel Application Resilience 52

FS-ISAC

SEPTEMBER 8, 2021

While cybercrime has been around for decades, the 2016 cyber heist against Bangladesh Bank was a watershed moment for financial authorities around the world. In its aftermath, many financial regulators ramped up their focus on cybersecurity, delving far deeper into firms’ cyber readiness and maturity than they had previously.

Authorization 52

Authorization Banking Benchmark Cybersecurity 52

FS-ISAC

MAY 25, 2021

Banks around the world are used to quantifying financial risks such as market, credit, and liquidity risks. But in a digital finance world that is quickly advancing into uncharted territory, non-financial risks – operational risk, fraud prevention, IT risk, and cybersecurity – are increasingly critical to the business.

Banking 52

Banking Cybersecurity Mitigation Risk Management 52

Fusion Risk Management

SEPTEMBER 12, 2022

Yes, there are some aspects of technology and data protection that fall within the parameters of privacy and cybersecurity laws. A recent study by OCEG indicates that operational risk programs are viewed as unnecessary overhead by business units. Or, as so well articulated by the great British writer C.

Resilience 52

Resilience Insurance Insurance Audit 52

Fusion Risk Management

MARCH 1, 2022

The Bank of England, as part of their operational resilience policy statement , continually outlined the need for institutions to ensure that they can continue to deliver their important business services during severe (or extreme) but plausible scenarios. appeared first on Fusion Risk Management.

Manufacturing 52

Manufacturing Logistics Vulnerability Transportation 52

Reciprocity

AUGUST 15, 2022

Specifically, a compliance management system looks like a collection of policies, procedures, and processes governing all compliance efforts. But as more companies use technology across all parts of the enterprise and more compliance requirements focus on cybersecurity, IT security is becoming an increasingly central part of the CMS.

Management 52

Management Audit Banking Risk Management 52

Plan B Consulting

OCTOBER 17, 2022

The Act itself does not define the notification requirements, but requires the Cybersecurity and Infrastructure Security Agency (CISA) to develop and implement regulations requiring certain designated organisations to report cyber incidents and ransomware payments to the CISA. Federal Bank Regulators.

Banking 40

Banking Publishing Cybersecurity Security 40

LogisManager

AUGUST 1, 2023

The National Credit Union Administration (NCUA) has recently released its priorities and areas of focus for the 2023 examinations, which include Interest Rate Risk, Credit Risk, and Information Security Risk. Easily organize and analyze data to prioritize resource allocation and address OCC and regulatory risk categories.

Risk Management 52

Risk Management Mitigation Banking Activation 52

FS-ISAC

MAY 25, 2021

As part of our Latin America focus for this edition of FS-ISAC Insights, we spoke with Homero Valiatti, Superintendent of Information Security at Itaú, Brazil's largest bank and the largest financial institution in the southern hemisphere. How are you managing the uptick in attacks on the supply chain?

Cybersecurity 52

Cybersecurity Malware Risk Management Security 52

Solutions Review

JANUARY 25, 2024

We’ve seen US states such as California passing their own privacy laws and drafting detailed regulations on cybersecurity audits, risk assessments, and automated decision making privacy by design in practice a must-do to be able to effectively respond to the demands of augmented privacy regulatory frameworks.

Authentication 142

Authentication Cybersecurity Security Government 142

Fusion Risk Management

MAY 12, 2022

At Marcus Evans’s Operational Resilience In The Financial Sector conference, a session was held that was led by Vicki Gavin of Kaplan International with panel members Rich Cooper of Fusion Risk Management and Stella Nunn of PwC, taking the discussion forward. Pinpointing the Moment of Impact. Becoming Omniscient.

Failover 52

Failover Resilience Crisis Management Mitigation 52

Fusion Risk Management

FEBRUARY 7, 2023

Once you’ve done that, it’s becoming increasingly important to train all of your teams, not just the crisis management team, on how to respond to disruptions. How many firms have considered their ability to access these specialty resources when everyone across the sector is clamouring for them simultaneously?

Financial Services 52

Financial Services Resilience Crisis Management Vulnerability 52

Solutions Review

FEBRUARY 1, 2024

We’ve seen US states such as California passing their own privacy laws and drafting detailed regulations on cybersecurity audits, risk assessments, and automated decision making privacy by design in practice a must-do to be able to effectively respond to the demands of augmented privacy regulatory frameworks.

Healthcare 59

Healthcare Security Cybersecurity Government 59

Solutions Review

JANUARY 28, 2024

We’ve seen US states such as California passing their own privacy laws and drafting detailed regulations on cybersecurity audits, risk assessments, and automated decision making privacy by design in practice a must-do to be able to effectively respond to the demands of augmented privacy regulatory frameworks.

Healthcare 52

Healthcare Security Cybersecurity Government 52