Information security officers are a must
I was talking with a client last week about a perceived gap in their organization. Despite having to address multiple regulations cutting across several oversight bodies, they were lacking a single...
View ArticleRisk: The core issue behind regulatory requirements
There’s a joke of sorts within my personal circle of family and friends regarding what it is that I do these days. Ask me and I’ll tell you that I’m a regulatory compliance expert who advises...
View ArticleCFPB: Filling the regulatory void left by Sheila Bair
I was an unabashed fan of Sheila Bair and made no secret of that fact. She was a breath of fresh air in a line of work where everything is stale and always at least a little boring. Not that Martin...
View ArticleAre self-assessments the right way to go?
About a decade ago a family member chastised me for having an auto repair shop do my oil changes for me. She (yeah, you’re reading that right – “she”) pointed out how ridiculously easy it was to drain...
View ArticleAre banks unfairly scrutinized?
A few years back when I first cut over to working somewhat exclusively with financial institutions I memorized an elevator speech that still somewhat defines who I am and what I do professionally....
View ArticleSecurity Standards: What’s in a name?
I had an interesting phone call recently with someone in a CISO-type position. They were looking for a consultant to help them keep a seat warm working with information security risk assessments and...
View Article