Page 7 - Spring 2024_Neat
P. 7
to breathe easy thinking that their banks are less vulnerable. calls are to a public relations firm and a government agency, expect
chaos and irreparable damage to the bank’s reputation and legitimate
The new year will see too many bankers still engaged in “cybersecurity questions about management’s competence to handle a crisis. Bankers
theater” as executive management relegates cybersecurity must face reality and seek advice and guidance from experienced firms,
preparedness to IT staff intoxicated by too-frequent phishing testing preferably in advance of any incident, so that the proper scenarios can
and other “style over substance” exercises that do little to mitigate the be considered, discussed, and mitigated.
risk of ransomware attacks.
Delusion is not an effective strategy when it comes to cybersecurity
In our work with banks, business email compromise (BEC) incidents and preparedness.
ransomware attacks are still the most common cybersecurity incidents
that lead to major financial losses at banks. BEC risk can be greatly Challenge Question
mitigated through simple hardening of email systems and proper Are your bank’s cybersecurity preparedness efforts truly effective, and
testing by a qualified and independent firm. have they been tested by an independent and qualified firm?
______________________________________
Ransomware attack risk mitigation is more complicated and multi-
layered, with the most important exercise often being the tough Look for Jimmy’s Technology Trend Predictions #6 through #10
discussion and what-if scenario of what bank management and the in the Summer A COMMUNITY BANKER
RKANSAS
board will do when hit with such an attack. If the victim bank’s first
ACB 2024 Compliance Conference
Powered by
The Compliance Event of the Year
September 10 & 11, 2024
Little Rock
You don't want to miss this one...Watch for Details
