Blog

Where a Breach Happens: Threats to Financial Institutions

by Sarah Harvey / December 16, 2022

Securing Financial Institutions Every business has an asset that they can’t bear to lose, and for financial institutions, those assets include money, financial information about consumers, and consumers’ personal data. Financial institutions need personal data in order to verify financial information and protecting all of that data is a responsibility. In this white paper, we’ll discuss four major areas of concern that financial institutions must take into consideration when securing…

Auditing Basics: Carve-Out vs. Inclusive Vendors

by Joseph Kirkpatrick / February 15, 2023

During the initial scoping phases of an organization’s audit engagement, your auditor will partner with you to help you narrow down the third-party vendors to be included in your engagement. In order to ensure that your organization’s security posture is and remains strong, you need to consider the impact that the third-party vendors you’ve entrusted sensitive data with could have on your organization. This means that you’ll need to be…

Auditing Basics: What is a Gap Analysis?

by Joseph Kirkpatrick / February 15, 2023

Do You Need a Gap Analysis? If it’s your first time pursuing compliance for any framework - whether it’s SOC 1, SOC 2, PCI DSS, HIPAA, GDPR, etc. – we strongly recommend beginning your engagement with a gap analysis. At KirkpatrickPrice, we’re committed to helping our clients get the most out of their audit, which means that we don’t want you to fail due to lack of preparation. That’s why…

Secure Your City: Public Transit

by Sarah Harvey / June 14, 2023

Public transit is integral to metropolitan areas. The public transit sector ranges from buses to trains, overground systems, underground systems, light rails, ferries, and more. New York’s Subway, London’s Underground, and Paris’ Métro are hallmarks of the cities’ cultures. But the growing dependence on and integration between public transit and technology opens up new areas of risks to cities with public transit systems. If a public transit system is compromised…

3 Types of Social Engineering Attacks on the Financial Services Industry: Would Your Employees Fall for Them?

by Sarah Harvey / December 16, 2022

Providing quality customer service is crucial for the financial services industry, but there are many potential pitfalls when your employees go above and beyond for your customers. Consider the number of sensitive assets that banks rely on every day to conduct business: Social Security numbers, credit information, PINs, cardholder data, mailing addresses, email addresses, account balances, and more. It’s all available and accessible to employees, which means that it’s susceptible…

Where a Breach Happens: Threats to Financial Institutions

Auditing Basics: Carve-Out vs. Inclusive Vendors

Auditing Basics: What is a Gap Analysis?

Secure Your City: Public Transit

3 Types of Social Engineering Attacks on the Financial Services Industry: Would Your Employees Fall for Them?

Categories

Newsletter

Learn what you need to get started with our Audit Readiness Guide.