Resource HubPosts By Category


Computer-Security Incident Notification Requirements for Banking Organizations and Their Bank Service Providers

5/31/2022

As of May 1, 2022, banks must now notify their primary federal regulator within 36 hours of determining a "notification incident" has occurred, while a bank service provider is required to notify each affected bank "as soon as possible" if an incident is "reasonably likely" to cause a disruption for more than four hours.

Read Full Article


BankTech Bytes: Computer-Security Incident Notification Requirements for Banking Organizations and Their Bank Service Providers

5/16/2022

This BankTech Bytes newsletter discusses Incident Notification Requirement updates from The Federal Register. 

Read Full Article


White Paper: Manufacturing Outlook, Leveraging Technology Today1st Quarter 2022 Insights from the Saltmarsh Manufacturing Team

3/24/2022

Our white paper discusses the need for cybersecurity to ensure your manufacturing company is protected and thriving in today's world.

A compromised password. That’s all it took for hackers to take down the largest fuel pipeline in the U.S. last year, which led to gas shortages and higher fuel prices across the East Coast. The cost was even more for the cyberattack victim, Colonial Pipeline. It has been reported that Colonial Pipeline paid a $4.4 million ransom to a Russia-linked cybercrime group and hired a cybersecurity firm to consult on its cyber defenses to help ward off future attacks...

Read Full Article


Webinar Recording: Trends in D&O and Cyber

2/25/2022

Webinar recording. Bank insurance renewals have become anything but routine. Dennis Gustafson from AHT Insurance joins us for a webinar on the metrics behind financial institutions’ insurance; and review trends in the D&O claims environment and how they are moving the market.

Read Full Article


Elevate your Third-Party Risk Management Program

2/21/2022

Vendor Management, which is now trendily known as Third-Party Risk Management (TPRM), continues to get increasing regulatory attention as it should. Most of us in the banking space these days are increasingly outsourcing key operations to third parties. Peering ahead, it’s hard to imagine that changing. It looks like the next great wave to wash over TPRM could be decentralized finance (DeFi) and cryptocurrency integrations. These may even overtake traditional Fintech as banking’s biggest potential disruptor. With compliance, safety and soundness exams focusing on TPRM, it is time to consider how to evolve our programs.  

Read Full Article


BankTech Bytes: Elevate your Third-Party Risk Management Program

2/7/2022

This BankTech Bytes Newsletter discusses considerations for elevating your Third-Party Risk Management Program. Vendor Management, which is now trendily known as Third-Party Risk Management (TPRM), continues to get increasing regulatory attention as it should. Most of us in the banking space these days are increasingly outsourcing key operations to third parties.

Read Full Article


Cryptocurrency - It's Time to Acknowledge the Elephant in the Room

9/20/2021

I never thought I would write about cryptocurrency, but with a current global market cap of $2.24 trillion, it doesn’t really matter what I might think about it anymore. There is simply too much money in this space to ignore it any longer.

Read Full Article


The FFIEC's New AIO Handbook

8/31/2021

On June 30, 2021, the Federal Financial Institutions Examination Council (FFIEC) published the new Architecture Infrastructure and Operations (AIO) Booklet, replacing the Operations booklet from July 2004. While this new booklet resembles its predecessor there are significant new themes to evaluate.  

Read Full Article


BankTech Bytes: The FFIEC's New AIO Handbook

8/26/2021

This BankTech Bytes Newsletter discusses the FFIEC's New AIO Handbook. 

On June 30, 2021, the Federal Financial Institutions Examination Council (FFIEC) published the new Architecture, Infrastructure, and Operations (AIO) booklet, replacing the Operations booklet from July 2004. While this new booklet resembles its predecessor there are significant new themes to evaluate. 

 

Read Full Article


Why Your Company Needed to Invest in Cybersecurity Yesterday

8/13/2021

From oil pipelines to government agencies, software vendors to hardware manufacturers, insurance firms and even video game developers, each of these industries have something in common. In the last six months, headlines have been made around ransomware attacks targeting businesses and government agencies within each of these industries with seemingly no discretion. 

Read Full Article


GovCon Updates of the Week Part 11

6/28/2021

Want the latest on the drop in small business contractors, the United States Air Force's potential $750 million contract and cybersecurity specifications like "critical software"?

Read Full Article


WEBINAR MATERIALS: The Rise of Ransomware - The Evolution, Risk & Recovery

6/22/2021

The evolution of ransomware creates constantly changing threats to businesses and if your defense and recovery processes aren’t changing along with it, you may not be prepared to bounce back when it finds you. This webinar includes a discussion about understanding, mitigating, and managing ransomware risks as well as best practices for small businesses.

Read Full Article


GovCon Updates of the Week Part 9

6/14/2021

Want updates on the Department of Homeland Security’s (DHS) and the Transportation Security Administration's (TSA) new directive, a program called Measuring the Information Control Environment (MICE) and Congress's new bills coming this summer?

Read Full Article


DOL Issues Cybersecurity Guidance for Retirement Plans

6/14/2021

On April 14, the Department of Labor (DOL) outlined a range of practices for combatting the growing threat of cybercrime to ERISA-covered retirement plans. This first-ever cybersecurity guidance issued by the DOL’s Employee Benefits Security Administration (EBSA) casts a wide net, addressing key issues affecting plan sponsors, fiduciaries, record keepers, as well as plan participants and beneficiaries.

Read Full Article


The Evolution of Ransomware

5/28/2021

As many people know, ransomware started by simply encrypting large amounts of victims’ data and holding the encryption key until the victim paid a ransom. The initial iterations of this were almost harmless, but as we look back, the genius involved is obvious. Read more! 

Read Full Article


GovCon Updates of the Week Part 8

5/25/2021

Want the latest updates on Government fiscal year (FY) 2022 budget release, the Department of Defense's (DoD) 5G telerobotic healthcare and the president's Executive Order (EO) on Improving the Nation’s Cybersecurity? Read more! 

Read Full Article


BankTech Bytes: The Evolution of Ransomware

5/21/2021

This BankTech Bytes Newsletter discusses the evolution of ransomware and what it is today.

As many people know, ransomware started by simply encrypting large amounts of victims’ data and holding the encryption key until the victim paid a ransom. The initial iterations of this were almost harmless, but as we look back, the genius involved is obvious.  

Read Full Article


GovCon Updates of the Week Part 6

5/6/2021

Want the latest updates on the Endless Frontier Act for emerging tech, the newest armed forces branch, the Space Force, and Consortia-Managed Other Transaction Authorities (OTAs)?

Read Full Article


Tech Leaders Worldwide Have Optimistic Outlook For 2021

5/5/2021

Amid unanticipated crisis, technology leaders sprang into action and helped business continue across many industries. After weathering the worst of the storm, tech executives carry continued optimism into 2021, anticipating a continued surge in demand and further opportunities for growth. 

Read Full Article


Nonprofit Data Breach Vulnerabilities and How to Avoid Them

4/23/2021

As more people are shifting to digital lifestyles and remote operations, data is being passed through the internet now more than ever. Proportionate to this, however, are the opportunities for potential compromise of the data, particularly via a data breach.

Read Full Article


GovCon Updates of the Week Part 4

4/21/2021

Want the latest updates on the Biden administration's 2022 budget request, small disadvantaged business (SDB) federal contract percentages and the U.S. Army biosurveillance systems?  

Read Full Article


Nacha's Supplementing Data Security Requirements Rule

4/20/2021

Nacha’s Supplementing Data Security Requirements rule expands the existing ACH Security Framework to explicitly require large, non-financial institution Originators, Third-Party Service Providers, and Third-Party Senders to protect account numbers (consumer and non-consumer) used in the initiation of ACH entries by rendering them unreadable when stored electronically.

Read Full Article


The M&A Metrics Software Companies Need to Know

4/16/2021

Software companies may be surprised by the metrics used to gauge their value and growth potential during M&A. Knowing what investors look at is core to the deal negotiation process.

Read Full Article


GovCon Updates of the Week Part 3

4/15/2021

Want the latest updates on the U.S. State Department's IT modernization, President Biden's nomination of Michael Brown for the Under Secretary of Defense for Acquisition and Sustainment (A&S) and the American Jobs Plan?

Read Full Article


WEBINAR MATERIALS: CMMC Readiness (Part 3) - Where to Start

4/8/2021

By now your cyber score is reported and your plans of action and milestones (POA&Ms) are built. What do you do next? In Part 3 of our series, we share new information released since our last webinar and begin addressing how to approach the CMMC framework at your organization.

Read Full Article


Past Posts By Category

Contact Us

DESTIN/FORT WALTON BEACH
(850) 243-6713

ORLANDO
(407) 203-8990

NASHVILLE
(615) 661-0885

PENSACOLA
(850) 435-8300

TAMPA
(813) 287-1111

info@saltmarshcpa.com
(800) 477-7458

2022 Saltmarsh, Cleaveland & Gund • Privacy Policy

Stay Connected

Sign up to receive updates and important information from Saltmarsh!

FIRM FAST FACTS