Stay Informed

Receive emails about current auditor/examiner trends and the latest FFIEC updates.

Compliance Guru

From the Field

Enlightenment from recent audits, examinations and customer questions

Guru Briefs – OCC on Cybersecurity & MRA’s, FFIEC on Cybersecurity Assessments

(NOTE:  Guru Briefs are short takes on recently released regulatory activity. They are not a
Read the rest of the article


Ask the Guru: The Vendor Report of Examination (ROE)

Hey Guru,

Where in the handbook does it state the Bank should request exam reports

Read the rest of the article


Say What You Do…But Do What You Say

Feedback from recent regulatory examinations indicates a potentially troublesome trend; regulators are actually reading your …
Read the rest of the article


Hot Topics

The Guru reflects on recent events

Assessing the Assessment – FFIEC Releases Cybersecurity Assessment Tool – UPDATE

UPDATE:  Safe Systems just released their Enhanced CyberSecurity Assessment Toolkit (ECAT) РThis enhanced version

Read the rest of the article


.bank or .bust? New Top Level Domain promises increased security…and plenty of questions.

Bankers are being encouraged to register their domain names under the new .bank extension, and …
Read the rest of the article


FFIEC Issues Stealth Update to BCP Handbook

This caught me by surprise as it was not formally announced in the “What’s
Read the rest of the article


About the Compliance Guru

Tom Hinkel has over twenty years experience in IT regulatory compliance, risk management and information security both inside banks and as a consultant for institutions of all sizes, Hinkel also serves as a regulatory compliance resource and certified educator for Safe Systems' bank and credit union clients.

Safe Systems Compliance Services