Making FFIEC cybersecurity compliance simpler for Banks

Making FFIEC cybersecurity compliance simpler for Banks

Making FFIEC cybersecurity compliance simpler for Banks. FFIEC stands for the Federal Financial Institutions Examination Council. The Federal Financial Institutions Examination Council (FFIEC) was established on March 10, 1979, pursuant to title X of the Financial Institutions Regulatory and Interest Rate Control Act of 1978 (FIRA), Public Law 95-630. In 1989, title XI of the Financial Institutions Reform, Recovery and Enforcement Act of 1989 (FIRREA) established The Appraisal Subcommittee (ASC) within the Examination Council. Quoting from [1] - The FFIEC [...]


This year we will be at BlackHat USA 2016 in Las Vegas!  As one of the premier security conferences, BlackHat brings together a variety of people interested in information security. We would love to meet you during the conference, please book an appointment with one of our security experts and join us in the Onion ID suite at Mandalay Bay (same hotel as the conference). Please click here to book a time slot. As a team, we are very passionate [...]

Diving into the world of Cybersecurity!

Privileged Access Management, Geofencing, Cybersecurity. Terms that I knew nothing or very little about. Even the word “security” was an entirely different concept in my mind, typically found in common phrases like “security guard” or “security camera”. When I joined Onion ID and started entering the world of cybersecurity I knew that I would have to do a lot of homework and research to catch up.  I started reading articles and watching videos, in order to understand as much as [...]

PCI DSS 3.2 – Complying with 2FA requirements without trying

Welcome to the new age of PCI 3.2. Its not radically different and you do have time till Jan 30 of 2018 to comply with the new guidelines. Then why is this article being written? What is the rush here? Once you scratch under the surface of PCI DSS 3.2 you'll quickly realize that there is something not quite so simple lurking underneath. Read through the draft and you'll find language that identifies the need to have 2 Factor Authentication [...]