The OGO Blog Archive
Welcome to the Ongoing Operations blog archive.
For our most up-to-date information, please visit ongoingoperations.com.
HOMEBusiness Planning
Preventing & Preparing for Cyberattacks: Incident Response Plan (IRP), Cyber Insurance, & Identifying Partners
How to build your Incident Response Plan
1. Standards-based – SANS or NIST
Defined Incident Response Team
2. Assign tasks and responsibilities to specific roles.
3. Assign someone to log the incident
4. Contact information for key staff, third parties, and law enforcement
5. Define how you will communicate ahead of time. Conference bridges, out-of-band communications.
6. Quick action response steps. Ransomware, Malware infection, Third-party breach
7. Test the plan at least annually.
8. Make sure everyone on the Incident Response Team is familiar.
9. Revise as necessary to match the current environment.
Preventing & Preparing for Cyberattacks: Cyber Attacks, Infection Vectors, & Layers of Defense
Common Types of Attacks on Credit Unions
1. Malware
2. Phishing Attacks
3. DDoS
4. Ransomware
Most Common Attack Vectors
1. Social Engineering: Phishing Emails
2. Clicking on Bad Links
3. Exploiting Vulnerabilities
Layers of Defense against Cyberattacks
1. Patching Vulnerabilities
2. Advanced Endpoint protection
3. Endpoint Isolation
4. Automated Backups
5. SOC/Monitoring: Early and Rapid Identification
6. Security Awareness Training
A look at Financial Impact Analyses (FIA) for Credit Unions
What is it? A Financial Impact Analysis (FIA) helps identify and calculate possible financial loss, should there be an interruption to regular business operations. The financial impact could include the…
Read MoreIs pandemic planning a pain or a blessing in disguise?
There is a plethora of information in the news about the Cornavirus (COVID-19). You cannot turn on the news or open a website without hearing about it, and rightly so.…
Read More5 Considerations for Building Credit Union Disaster Recovery Plans
Building credit union disaster recovery plans isn’t the easiest thing in the world. There are numerous difficult logistical problems to address, and they’re all important. We’ll try to distill some…
Read More2019 Credit Union Technology Trends to Watch
Wow. What a year! The credit union and FinTech worlds are frothy and lots of change is underway. This year, some of the walls came down and credit unions saw more…
Read MoreWhat is a QBR and should a credit union require it from their strategic IT service providers?
Many clients ask for metrics and SLAs when it comes to their IT performance related to key vendors. One tool that can provide such insight is Ongoing Operations’ QBR (Quarterly…
Read MoreIf I was running a credit union: The insider/outsider perspective
Do you ever have members who apply for loans that aren’t right for them, or who make financial mistakes that you has a banker would easily avoid? Or maybe you…
Read MoreIf You Could Track Member Data Like Cash In a Branch, Would you?
In every credit union I have worked in, the credit union knows where every ounce of cash is at all times. We know which drawers have it, which tellers, which…
Read MoreStop Doing These 3 Things If You Want Your Credit Union Member Information Safe
You’ve worked really hard to protect your Credit Unions member information from the obvious threats (think ransom hacker or dumpster diver). You have a firewall and some sort of alphabet…
Read More