Tyler Leet takes credit union cybersecurity very seriously. For him, it’s not just a job. It’s a duty.
“We have an obligation,” says Leet, director of risk and compliance services for the regulatory compliance group at CSI, Paducah, Kentucky, the sponsor of the latest episode of the CUES Podcast. “Businesses have an obligation, credit unions have an obligation to keep their members secure, their data secure, their money secure.”
In this show, Leet shares his 20 years of experience in information security, risk and compliance by describing best practices in “going on offense” to defend your credit union and the data it generates against hackers. These best practices include knowing:
Leet urges credit unions to not be afraid of the results they might get from doing vulnerability assessments and penetration tests—even though it might be disappointing to find holes in your defenses against cyberattacks.
“It’s a learning exercise,” he explains. “I mean you’re looking to improve. It's not about just making the document to make examiners happy. It’s: ‘What are we figuring out along the way? What insights are we gaining into our organization?’”
Leet also reminds every listener that they contribute to overall organizational security, even if they’re not in IT:
“You are an end user, whether you’re a teller or a loan officer or an executive,” he says. “You have access to systems, and you are a potential target. You are a potential avenue into that network and can make a mistake that could cost your organization. So, while you’re not expected to be a security expert, you can learn basics about good security hygiene and to avoid being one of the reasons your organization gets compromised.”
Links for this show:
Tyler Leet takes credit union cybersecurity very seriously. For him, it’s not just a job. It’s a duty.
“We have an obligation,” says Leet, director of risk and compliance services for the regulatory compliance group at CSI, Paducah, Kentucky, the sponsor of the latest episode of the CUES Podcast. “Businesses have an obligation, credit unions have an obligation to keep their members secure, their data secure, their money secure.”
In this show, Leet shares his 20 years of experience in information security, risk and compliance by describing best practices in “going on offense” to defend your credit union and the data it generates against hackers. These best practices include knowing:
Leet urges credit unions to not be afraid of the results they might get from doing vulnerability assessments and penetration tests—even though it might be disappointing to find holes in your defenses against cyberattacks.
“It’s a learning exercise,” he explains. “I mean you’re looking to improve. It's not about just making the document to make examiners happy. It’s: ‘What are we figuring out along the way? What insights are we gaining into our organization?’”
Leet also reminds every listener that they contribute to overall organizational security, even if they’re not in IT:
“You are an end user, whether you’re a teller or a loan officer or an executive,” he says. “You have access to systems, and you are a potential target. You are a potential avenue into that network and can make a mistake that could cost your organization. So, while you’re not expected to be a security expert, you can learn basics about good security hygiene and to avoid being one of the reasons your organization gets compromised.”
Links for this show: