2025 Webinars
-
đź”— CAT Tool Sunset - CRI Profile - Webinar (Short Version) Recording
-
The link above will take you to our CRI Profile webinar – I've shortened it to just what’s needed instead of the full walkthrough. Some edits were made after recording.
-
Here is the link to 🔗 our version of the CRI Profile. It’s long – but I hope we’ve helped shorten your time to complete it. As with the CAT tool, banks should show progress on all Tier 4 diagnostic statements.
-
NOTE / CAVEAT: Please feel free to share with anyone! I hope my comments in Column K (Assessment Rationale) and Column L (Supporting Evidence) help speed things up. If you disagree with anything – no worries at all – adjust as needed based on your judgment and guidance. No need to send back feedback. Columns J (responses), K, and L are where you’ll want to make changes and color-code updates. The “Assessment Response Summary” sheet gives a summary and includes a chart at the bottom that should auto-update as you go. Also, just fyi - the numbers 208 and 110 correspond to Tier 4 diagnostic statements – if you selected Tier 1, it would be 318 and 0.
-
Don’t be afraid to select “No” or anything other than “Yes” – just complete the assessment and mark any gaps as action items.
-
Here’s a quick summary of the response options for each diagnostic statement:
- Yes: Fully implemented and operating reliably across the organization.
- Yes – Risk Based: Fully implemented and tested for high-risk assets/functions only.
- Yes – Compensating Control: Achieved using alternative but effective controls.
- No: Not meaningfully implemented yet.
- Partial: Some controls implemented and operating, but not fully.
- To Be Determined: Not yet assessed or determined.
- Not Tested: Controls haven’t been tested yet.
- Not Applicable: Doesn’t apply to the institution – verify with stakeholders.
-
A quick plug: If you’re looking for more than just an Excel tool, there are vendors offering full-featured platforms for this and similar frameworks (CRI, NIST, CIS, etc.). We’ve seen good offerings from: SBS Cybersecurity, NContracts, Finosec, Conetrix, and likely others. Let me know if you hear of more reputable ones – I’ll add them here!
- Securing Microsoft 365 Webinar Recording
-
Below is a link to the recorded (slightly edited) webinar!
-
Also, below are updated scripts. A couple of things I added - some additional cleanup after running MATT (Microsoft 365 conditional Access Triage Tool).
-
Also, in the other 3 scripts, there were some modules called that I didn't check whether were installed prior to running, so I've put if/else conditions; so if they aren't installed, they will get installed.
-
The webinar covers these scripts, how to run them, what they do and why, as well as introduces other security settings that should be tightened down in Microsoft 365.
- *** Updated v2 Script ***MATT (Microsoft conditional Access Triage Tool) v2 - Text Document - this updated version also checks what Grants are in place (e.g., multifactor authentication strength). Prior script wasn't listing all Grants.
- MATT (Microsoft conditional Access Triage Tool) - Text Document
- Mobile Device Email Access Reporting - Text Document
- Shared Mailbox Block Sign In Reporting - Text Document
- Verify Unified and Mailbox Audit Logging Enabled - Text Document
- Securing Microsoft 365 PowerPoint Slides
- Notes from email sent with links to settings and instructions on scripts, etc. - Word Doc
- Webinar Video Recording on YouTube
- Seth Earby Video on Intune enrollment notifications - workaround
To get below scripts, right click on the link itself and choose "Save link as".
Please note - the MATT script will not error out if the output file is already in the C:\Temp folder - but it won't overwrite it either - it'll just add to it.
So, please delete that file before running MATT scripts!
Old Webinars
Should there be a topic you might be interested in, please email (kkothari@sgcsecure.com) or call (515-229-5674) and let us know! Please click the link on any topic below (more will be added :)) to register!
- AD Audit Made Easy: Back to Basics Scripts for Enhancing Network Security and Oversight (Thursday, July 20 at 1pm Central Time)
-
We originally wanted to expand our audit offering to include an Active Directory audit; however, in testing our scripts with some banks, performing these scripts only once a year didn’t seem like it would add value; the amount of information obtained from these scripts makes them something that needs to be run more often (e.g., quarterly or even monthly).
-
So, we’ve decided to release our scripts for free.
-
Our script will summarize and provide you with various data related to your Active Directory environment, including, but not limited to: enabled accounts, disabled accounts, dormant accounts, privileged user accounts, Tombstone Policy, krbtgt Account, password policies, etc.
-
This webinar covers these scripts, how to run them, what they do and why, as well as introduces other potential tools that can be used for Active Directory oversight.
To get below scripts, right click on the link itself and choose "Save link as".
- ChatGPT: Unleashing Creativity and Knowledge with Generative AI (Tuesday, August 8 at 1pm Central Time)
This webinar will be a brief introduction into generative AI. If you attended our presentation at FutureOps earlier this year, then this will be a replica of that. It will be mostly live demo of how I’ve been using ChatGPT and why we believe all of you should be using it. We’ll review and provide a Generative AI Policy Template we created to ensure you’re all covered in this area.
- Log Event Monitoring: Events Every Bank Should Consider Monitoring (September 14 at 1pm Central Time )
Whether you have a SIEM or LEM solution, or nothing, this webinar’s focus is on what Windows events should be monitored for and why. We’ll cover other elements that should be monitored as well (e.g., Microsoft 365, Firewall, etc.).
- Securing Microsoft 365 (Thursday, October 19 at 1pm Central Time)
Although our audits cover high risk areas of Microsoft 365, this webinar is intended to dive deeper into the M365 environment. We’ll be covering how to strengthen your M365 environment “beyond the audit”.
Templates
Our approach to everything is to focus on action items and meaningful actions organizations can take to protect themselves. As a result, we provide free templates that bank's can use in their own information security programs if needed.
Please check back regularly - as needs arise, we will continue to add to this list. If there's something you are looking for that you don't see below, please let us know. We will try to provide whatever we can to assist your bank or organization in meeting it's IT needs. Please contact us at info@sgcsecure.com, or (515) 229-5674 for more information.
- Generative AI (ChatGPT) Policy Tempate
- Webinar on Ransomware and Ransomware Self Assessment Tool (R-SAT)
- R-SAT Sample Board Report
- Ransomware Self Assessment Tool (R-SAT) - SGC Marked Up Version
- R-SAT Sample Board Report
- Vendor Management Enhanced Due Diligence - Questionnaire
- Cybersecurity Self Assessment Tool
- CATO Risk Assessment
- CATO Board Report
- CATO Incident Response Wording
- CATO Onsite Visit Questions
- CATO Agreement Sample Wording
- Vendor Management Risk Assessment and Due Diligence Tracking
- Incident Response Testing
- Disaster Recovery Plan Walkthrough
- Disaster Recovery Roundtable Test
- Quick Tips Phishing Training for Customers
- FDIC Consumer News --- NOTE: This is a link that takes the user away from the Secure Guard Consulting website. ---
- Instructions to Clear your web browser's cache, cookies, and history --- NOTE: This is a link that takes the user away from the Secure Guard Consulting website. ---
- Reserve a .om domain --- NOTE: This is a link that takes the user away from the Secure Guard Consulting website. --- Also, we do not profit in any way from use of this domain service or link. ---
Videos
In keeping with our approach to transparency, we periodically record videos that we feel assist banks with information security training.
Please check back regularly - as needs arise, we will continue to add to this list. Please contact us at info@sgcsecure.com, or (515) 229-5674 for more information.
- Implementing One Time Temporary Access Pass (TAP) for Initial Access to Email via Mobile Device
- Please Read: The mobile device quarantine process this past few months doesn't appear to work consistently. We're certain there's a reason why it isn't working, but when something is working sometimes, but not all the time, it's not a true control. So, the above link is a video to implementing TAP for initial access to email on a mobile device. Remember - the video above ONLY works if you've established Intune or MAM (app protection policies) properly. If doing both TAP and quarantine process - then when quarantine works, after the TAP, you may have to release acces within quarantine. That being said, TAP is strong enough that it would be ok to remove the quarantine process once TAP is implemented. If you are still only using a registration campaign, and no authentication methods specified, we do recommend hiring Seth Earby who can be reached at (813) 358-8474.
- * Recorded Webinar * Ransomware Self-Assessment Tool (R-SAT) (Conducted January 11, 2021) This was our first Webinar for 2021. A practical walkthrough of the R-SAT, how to complete it and how to use it.