The OGO Blog Archive
Welcome to the Ongoing Operations blog archive.
For our most up-to-date information, please visit ongoingoperations.com.
HOMEWhat is a Virtual CISO, and Why is a vCISO Good for A Credit Union?
Like many other sectors, the Credit Union industry faces the ever-increasing challenges in protecting their critical IT infrastructure against both internal and external. This necessitates leadership being able to make…
Read More5 Reasons Your Credit Union Needs A SIEM System
The Credit Union industry increasingly relies on technology to offer the best possible services to its members. This creates an ever-growing technological footprint that requires constant maintenance and security. Credit…
Read More5 Ways to Protect Your Credit Union with Patch Management
Keeping all your credit union’s devices up to date with the latest operating system and software updates can be tricky, painful, and tedious. Forgoing patches or putting them off can…
Read MoreWhy Is Managed SIEM Important for Credit Unions?
Your credit union’s IT staff may have some SIEM capabilities of their own, but might you be better served by a third party?
Read MoreWhy Are Credit Unions Opting for Managed Patching?
With the increasing number of devices, applications, and vulnerabilities, many credit unions hire outside service providers to keep their environment secure, up to date, and compliant.
Read MoreArtificial Intelligence-Powered Chatbot Delivers Outstanding Member Experience
“After adding the bot to the CU’s online banking and mobile app, leaders of the organization saw a 60% containment rate in customer inquiries—that is, 60% of users who interacted with the bot finished their experience without speaking to a live human agent.”
Train your employees
Prepare and test your incident response plan
Engage third-party response professionals in advance
Make sure your backups are ready
Anti-malware software
Patch your devices
Assess your readiness
August 2021 – Cybersecurity Tip of the Month: 5 Reasons Credit Unions are switching to Virtual CISOs
Here are the 5 reasons credit unions are opting for virtual CISOs:
1. Lack of Budget
2. Difficulties Retaining Talent
3. Freeing up IT Team
4. Experience
5. Compliance
Preventing & Preparing for Cyberattacks: Incident Response Plan (IRP), Cyber Insurance, & Identifying Partners
How to build your Incident Response Plan
1. Standards-based – SANS or NIST
Defined Incident Response Team
2. Assign tasks and responsibilities to specific roles.
3. Assign someone to log the incident
4. Contact information for key staff, third parties, and law enforcement
5. Define how you will communicate ahead of time. Conference bridges, out-of-band communications.
6. Quick action response steps. Ransomware, Malware infection, Third-party breach
7. Test the plan at least annually.
8. Make sure everyone on the Incident Response Team is familiar.
9. Revise as necessary to match the current environment.
7 Ways You Can Prepare for a Ransomware Attack!
Here are seven steps you can take to help prepare your credit union for a ransomware attack.
Train your employees
Prepare and test your incident response plan
Engage third-party response professionals in advance
Make sure your backups are ready
Anti-malware software
Patch your devices
Assess your readiness
Preventing & Preparing for Cyberattacks: Cyber Attacks, Infection Vectors, & Layers of Defense
Common Types of Attacks on Credit Unions
1. Malware
2. Phishing Attacks
3. DDoS
4. Ransomware
Most Common Attack Vectors
1. Social Engineering: Phishing Emails
2. Clicking on Bad Links
3. Exploiting Vulnerabilities
Layers of Defense against Cyberattacks
1. Patching Vulnerabilities
2. Advanced Endpoint protection
3. Endpoint Isolation
4. Automated Backups
5. SOC/Monitoring: Early and Rapid Identification
6. Security Awareness Training