Services

• CAT Tool Sunset - Intro to the CRI Profile and Options (***Rescheduled*** to Thursday, May 22 at 1pm Central Time)
  
  We've gotten a lot of questions over the sunsetting of the FFIEC CAT tool and what banks should do to replace it. The FFIEC pointed to a couple other frameworks - CRI seems like the most reasonable one.
  I do think everyone should really do the FFIEC CAT tool this year and just be good for a year.
  I also think the FFIEC CAT tool was excellent and some minor updates would make it current and impactful.
  So, in this webinar, I'm going to cover the CRI Profile and how it works and how to complete it. I'm also working on an updated version of the CAT tool, which I feel would be easier to migrate to since most of you have done it already, so I will introduce that here too.
  

• Securing Microsoft 365 Webinar Recording
  
  Below is a link to the recorded (slightly edited) webinar!
  Also, below are updated scripts. A couple of things I added - some additional cleanup after running MATT (Microsoft 365 conditional Access Triage Tool).
  Also, in the other 3 scripts, there were some modules called that I didn't check whether were installed prior to running, so I've put if/else conditions; so if they aren't installed, they will get installed.
  The webinar covers these scripts, how to run them, what they do and why, as well as introduces other security settings that should be tightened down in Microsoft 365.
  
  To get below scripts, right click on the link itself and choose "Save link as".
  
       Please note - the MATT script will not error out if the output file is already in the C:\Temp folder - but it won't overwrite it either - it'll just add to it.
       So, please delete that file before running MATT scripts!
  
  
  • *** Updated v2 Script ***MATT (Microsoft conditional Access Triage Tool) v2 - Text Document - this updated version also checks what Grants are in place (e.g., multifactor authentication strength). Prior script wasn't listing all Grants.
  • MATT (Microsoft conditional Access Triage Tool) - Text Document
  • Mobile Device Email Access Reporting - Text Document
  • Shared Mailbox Block Sign In Reporting - Text Document
  • Verify Unified and Mailbox Audit Logging Enabled - Text Document
  • Securing Microsoft 365 PowerPoint Slides
  • Notes from email sent with links to settings and instructions on scripts, etc. - Word Doc
  • Webinar Video Recording on YouTube
  • Seth Earby Video on Intune enrollment notifications - workaround

Should there be a topic you might be interested in, please email (kkothari@sgcsecure.com) or call (515-229-5674) and let us know! Please click the link on any topic below (more will be added :)) to register!

• AD Audit Made Easy: Back to Basics Scripts for Enhancing Network Security and Oversight (Thursday, July 20 at 1pm Central Time)
  
  We originally wanted to expand our audit offering to include an Active Directory audit; however, in testing our scripts with some banks, performing these scripts only once a year didn’t seem like it would add value; the amount of information obtained from these scripts makes them something that needs to be run more often (e.g., quarterly or even monthly).
  So, we’ve decided to release our scripts for free.
  Our script will summarize and provide you with various data related to your Active Directory environment, including, but not limited to: enabled accounts, disabled accounts, dormant accounts, privileged user accounts, Tombstone Policy, krbtgt Account, password policies, etc.
  This webinar covers these scripts, how to run them, what they do and why, as well as introduces other potential tools that can be used for Active Directory oversight.
  
  To get below scripts, right click on the link itself and choose "Save link as".
  
  
  • AD Audit - Core Script
  • AD Audit - Group Memberships Script
  • AD Audit - Blank Groups Script
  • AD Audit Power Point Presentation
  • Webinar Video Recording on YouTube

• ChatGPT: Unleashing Creativity and Knowledge with Generative AI (Tuesday, August 8 at 1pm Central Time)
  This webinar will be a brief introduction into generative AI. If you attended our presentation at FutureOps earlier this year, then this will be a replica of that. It will be mostly live demo of how I’ve been using ChatGPT and why we believe all of you should be using it. We’ll review and provide a Generative AI Policy Template we created to ensure you’re all covered in this area.
  • Webinar Video Recording on YouTube

• Log Event Monitoring: Events Every Bank Should Consider Monitoring (September 14 at 1pm Central Time )
  Whether you have a SIEM or LEM solution, or nothing, this webinar’s focus is on what Windows events should be monitored for and why. We’ll cover other elements that should be monitored as well (e.g., Microsoft 365, Firewall, etc.).

• Securing Microsoft 365 (Thursday, October 19 at 1pm Central Time)
  Although our audits cover high risk areas of Microsoft 365, this webinar is intended to dive deeper into the M365 environment. We’ll be covering how to strengthen your M365 environment “beyond the audit”.

Our approach to everything is to focus on action items and meaningful actions organizations can take to protect themselves. As a result, we provide free templates that bank's can use in their own information security programs if needed.

Please check back regularly - as needs arise, we will continue to add to this list. If there's something you are looking for that you don't see below, please let us know. We will try to provide whatever we can to assist your bank or organization in meeting it's IT needs. Please contact us at info@sgcsecure.com, or (515) 229-5674 for more information.

• Generative AI (ChatGPT) Policy Tempate
• Webinar on Ransomware and Ransomware Self Assessment Tool (R-SAT)
• R-SAT Sample Board Report
• Ransomware Self Assessment Tool (R-SAT) - SGC Marked Up Version
• R-SAT Sample Board Report
• Vendor Management Enhanced Due Diligence - Questionnaire
• Cybersecurity Self Assessment Tool
• CATO Risk Assessment
• CATO Board Report
• CATO Incident Response Wording
• CATO Onsite Visit Questions
• CATO Agreement Sample Wording
• Vendor Management Risk Assessment and Due Diligence Tracking
• Incident Response Testing
• Disaster Recovery Plan Walkthrough
• Disaster Recovery Roundtable Test
• Quick Tips Phishing Training for Customers
• FDIC Consumer News --- NOTE: This is a link that takes the user away from the Secure Guard Consulting website. ---
• Instructions to Clear your web browser's cache, cookies, and history --- NOTE: This is a link that takes the user away from the Secure Guard Consulting website. ---
• Reserve a .om domain --- NOTE: This is a link that takes the user away from the Secure Guard Consulting website. --- Also, we do not profit in any way from use of this domain service or link. ---

In keeping with our approach to transparency, we periodically record videos that we feel assist banks with information security training.

Please check back regularly - as needs arise, we will continue to add to this list. Please contact us at info@sgcsecure.com, or (515) 229-5674 for more information.

• M365 MitM / AitM MFA Bypass Attack

• Social Engineering Phishing Attack

• * Recorded Webinar * Ransomware Self-Assessment Tool (R-SAT) (Conducted January 11, 2021) This was our first Webinar for 2021. A practical walkthrough of the R-SAT, how to complete it and how to use it.