HomeCategoryInformation Technology Archives | Young & Associates, Inc.

October 5, 2020

Young & Associates, Inc. remains committed to keeping our employees, clients, and partners safe and healthy during the COVID-19 pandemic. During this difficult and unprecedented time, we have continued to successfully leverage technology to fulfill our commitments to our clients and partners through secure remote access for reviews, virtual/teleconference training, and other management consulting support....

August 20, 2019

By: Mike Detrow, CISSP, Senior Consultant and Manager of IT Just like technology, we have seen information security risk assessments evolve over time. Initially, risk assessments were focused on the core system as the main repository of customer data, as well as paper documents and PCs. However, financial institutions continue to use new technologies to...

By: Jerry Sutherin, President & CEO, Young & Associates, Inc. On January 31, 2018, I was fortunate to have the opportunity to purchase Young & Associates, Inc. from Mr. Gary Young, the company’s founder and current Chairman. Nearly 40 years ago, Gary created this organization with a vision of providing community banks with consulting services...

February 28, 2018

By: Mike Detrow, Senior Consultant and Manager of IT Over the past two years, we have seen a significant increase in the number of community bank IT managers that have voiced substantial concerns about the ability of their bank’s current staff to properly secure their information systems and maintain regulatory compliance. These concerns are the...

November 20, 2017

By: Mike Detrow, CISSP, Senior Consultant and Manager of IT As the recent Equifax breach illustrates, failing to remediate known vulnerabilities in a timely manner can have significant consequences. In the case with Equifax, reports indicate that a patch was issued approximately two months prior to the May 2017 breach for the vulnerability that was...

On May 31, 2017, the FFIEC announced an update to the Cybersecurity Assessment Tool which includes a change within the cybersecurity maturity section of the tool and an updated mapping of the baseline statements to the FFIEC IT Examination Handbooks. The update to the cybersecurity maturity section of the tool allows institutions to select “Yes...

February 22, 2017

By: Mike Detrow, CISSP, Senior Consultant and Manager of I.T. Assessments show that the human element is always the weakest link in the security chain. It is not uncommon for a community bank to fare well during external network vulnerability scans due to appropriately configured firewall rules controlling inbound traffic and/or limited internally hosted services....

November 10, 2016

By: Mike Detrow, CISSP, Senior Consultant and Manager of IT As part of its continued focus on cybersecurity, the Federal Financial Institutions Examination Council’s (FFIEC) September 2016 Information Security Handbook emphasizes the need for institutions to implement procedures for obtaining, monitoring, assessing, and responding to evolving threat and vulnerability information. Institutions have typically implemented a...

Connect with a consultant

Contact us to learn more about our consulting services and how we can add value to your financial institution