First Commonwealth Appoints Cybersecurity Expert to Board Amid Rising Digital Threats

By Susan Powell

November 03, 2025

Indiana, PA – First Commonwealth Financial Corporation (NYSE: FCF) is strengthening its defenses against escalating cyber threats with the appointment of Joseph V. DiVito Jr. to its Board of Directors, effective immediately. The move signals a proactive approach to risk management within the regional banking sector, as institutions grapple with increasingly sophisticated attacks and stringent regulatory demands.

DiVito, a veteran cybersecurity leader with 35 years of experience at PricewaterhouseCoopers LLP (PwC), brings a wealth of expertise in information technology, cybersecurity, regulatory compliance, data privacy, and governance. He led PwC’s U.S. Cybersecurity, Privacy, and Forensics practice before retiring, advising organizations across diverse industries – including financial services – on navigating the complex landscape of digital risk.

“This appointment isn’t just about adding another name to the board; it’s about infusing a critical skillset at a time when the threat landscape is rapidly evolving,” explains one industry analyst, speaking anonymously. “Regional banks are increasingly becoming targets, and proactive measures are crucial for protecting customer data and maintaining financial stability.”

A Proactive Approach to Governance

The appointment of DiVito reflects a broader trend within the banking sector – a growing recognition that cybersecurity is no longer solely an IT issue but a core business risk that requires board-level oversight. Regulatory pressure from agencies like the FDIC and the Office of the Comptroller of the Currency (OCC) is also driving this shift, emphasizing the importance of robust cybersecurity governance frameworks.

“The OCC has been very clear: banks must demonstrate effective board oversight of cybersecurity risks,” says a former regulator, also speaking anonymously. “This means having directors with the right expertise and ensuring that cybersecurity is integrated into the bank’s overall risk management strategy.”

First Commonwealth’s current security posture, while demonstrating moderate risk with a ‘B’ grade from SecurityScorecard, shows a commitment to addressing vulnerabilities. While the bank hasn’t reported any major breaches in the last three years, its 2023 annual report acknowledged the increasing prevalence of cyber threats, demonstrating an awareness of the need for ongoing vigilance.

From Consulting to the Boardroom: A Valuable Transition

DiVito’s transition from a prominent cybersecurity consulting role to a board position highlights the growing demand for independent directors with specialized expertise. Having advised organizations from startups to Fortune 50 companies, DiVito brings a broad perspective and a deep understanding of the challenges facing businesses in the digital age.

“Bringing in someone with DiVito’s background is smart,” comments another industry expert. “He’s seen how security programs are built, what works, and what doesn’t. That experience is invaluable for a board looking to strengthen its oversight capabilities.”

DiVito’s track record includes leading cybersecurity assessments for major financial institutions and guiding organizations through complex regulatory compliance requirements. His experience in areas like data privacy (CIPP/US, CIPM certifications) and information systems auditing (CISA) will be particularly relevant as First Commonwealth navigates the evolving regulatory landscape.

Community Bank, National Threats: Prioritizing Customer Protection

While often perceived as less vulnerable than larger institutions, community banks like First Commonwealth are increasingly attractive targets for cybercriminals. Their smaller security budgets and potentially less sophisticated defenses can make them easier to breach. The appointment of DiVito sends a clear message to First Commonwealth’s customers – and the communities it serves – that data security is a top priority.

“Customers are becoming more aware of the risks and expect their banks to protect their financial information,” says a local consumer advocate. “Seeing a bank invest in cybersecurity expertise at the board level is reassuring.”

DiVito’s previous work has involved helping organizations build robust security programs and respond effectively to cyber incidents. He is also a frequent speaker at industry conferences, sharing his insights on the latest threats and best practices. This ability to stay abreast of emerging trends will be invaluable as First Commonwealth continues to adapt its defenses.

“It’s not enough to just implement security technologies,” emphasizes DiVito in a recent industry presentation. “You need a culture of security, with everyone understanding their role in protecting the organization’s assets.”

Looking Ahead: A Focus on Proactive Risk Management

First Commonwealth’s appointment of Joseph V. DiVito Jr. is a strategic move that underscores the growing importance of cybersecurity governance in the banking sector. As cyber threats continue to evolve and regulatory scrutiny intensifies, banks must prioritize proactive risk management and invest in the expertise needed to protect their customers and their businesses. The bank’s proactive approach demonstrates a commitment to safeguarding the financial well-being of its customers and maintaining a secure and resilient digital infrastructure. For First Commonwealth, and the broader regional banking landscape, this appointment isn't just about mitigating risk – it’s about building trust and ensuring a sustainable future in an increasingly digital world.