Occam’s razor states, “All things being equal, the simplest solution tends to be the best one.” When this is applied to data classification, making everything private and confidential sounds like the best option. The best policy I’ve seen says that all bank information (customer information, policies, procedures, contact lists, employee numbers, network diagrams [...]

powered by ODEO
In this episode, Court and Heath chat a little about the ins and outs of Vendor Management. We hit on RFPs, SLAs, and SAS 70s, as well as introduce the world to the ATOW.

For the past several months, we have been warning our customers in offline conversations that the “multi-factor” authentication methods employed by most banks these days is not true two-factor authentication.  Its really nothing more than a glorified single factor.  Its been our experience that examiners are not currently drilling into this, but with news like [...]

When I visit banks week to week the topic of social media as a way to contact customers seems to always come up. I have read some strategic plans recently that state the bank wants to reach a younger demographic, but don’t really know how to do this. Starting a blog on your [...]