Additionally, cybersecurity training should be conducted annually and during onboarding, and employees
            should be regularly tested via phishing demonstrations.

            These regulatory changes, and many others, have significantly raised the bar for cybersecurity in the
            financial sector and have demanded increased investments in technology and manpower. If you haven’t
            already, take care in taking the proper action before April 29 to ensure you’re well prepared to avoid risks
            of noncompliance penalties.






            About the Author

            Christopher Salone, CISA, MBA, CCSFP is a Consulting Manager and
            Financial  Services  Practice  Leader  of  FoxPointe  Solutions,  the
            Information Risk Management Division of The Bonadio Group. His work
            focuses on internal and external auditing of information technology and
            information security practices and controls, providing services to clients
            across  multiple  industries,  including  public  and  private  companies,
            financial  institutions,  healthcare  organizations,  tech  companies,  and
            school  districts.  He  conducts  audits  in  accordance  with  regulatory
            compliance  standards.  Christopher  can  be  reached  online  at
            [email protected] and at the FoxPointe Solutions website:
            http://www.foxpointesolutions.com.







































            Cyber Defense eMagazine – June 2024 Edition                                                                                                                                                                                                          205
            Copyright © 2024, Cyber Defense Magazine. All rights reserved worldwide.