FFIEC Counts on Its New Cybersecurity Assessment 'Tool' Developed for Financial Institutions
897
![]() 1562
![]() 282
![]() |
WASHINGTON: The Federal Financial Institutions Examination Council (FFIEC) unleashes the new Cybersecurity Assessment Tool (Assessment) for extending support to management and directors of financial institutions to understand supervisory expectations, create awareness on cyber security risks thereby assess and mitigate impending threats.
Designed specifically to aid the security requirements of financial institutions, the platform not only evaluates the level of risks but also determines their capacity to manage and control these threats. The tool is essentially a user's guide that leads institutions through self-assessment.
Comprising mainly of two sections, one is the ‘Inherent Risk Profile’ which understands how each activity, service, and product contribute to the inherent risk; determine the institution’s overall profile and whether a specific category poses additional risk while the second, ‘Cybersecurity Maturity’ determines the institution’s cyber security maturity levels across each of the five domains.
"The assessment provides a repeatable and measurable process for institutions to measure their cybersecurity preparedness over time," the FFIEC says in a given overview of the tool.
The FFIEC has made resources available for institutions which is useful for references. The materials include an executive overview, a user’s guide, an online presentation explaining the Assessment, and appendices mapping the Assessment’s baseline maturity statements to the FFIEC Information Technology Examination Handbook. The materials also incorporate cyber security standards developed by the National Institute of Standards and Technology Cybersecurity Framework.
Meanwhile, through an upcoming Paperwork Reduction Act notice in the Federal Register, the FFIEC members are expecting institutions to give healthy feedbacks on the Assessment. The tool will be updated as new threats, vulnerabilities, and operational environments evolve.
Read Also
Featured Vendor
EveryCloud Technologies: Delivering Powerful Email Filtering Services" title="Graham O'Reilly, CEO & Co-Founder" style="float:left; margin-right:10px; margin-bottom:20px;" width="60px" height="50px">
EveryCloud Technologies: Delivering Powerful Email Filtering Services
Onepath: A Responsive Info-Security Management Framework – the easier way to dramatically improve your overall info-security posture
Covenant Security Solutions, Inc.: Revolutionary Solutions to Mitigate Security and Compliance Risks
EDITOR'S PICK
Monitoring Technologies Without Human Intervention
By John Kamin, EVP and CIO, Old National Bancorp
Bringing Simplicity into the Business
By Gregg T. Martin, VP & CIO, Arnot Health
Build Straight Forward Processes Accept Rapid Fire Change
By Dave Doyle, CIO & SVP, IT, Regal Entertainment Group
The Current Focus is On Comprehensive Solutions
By Sergey Cherkasov, CIO, PhosAgro
Fueling Your Business through Insights- Driven...
By Adrian Mebane, VP-Global Ethics & Compliance, The Hershey...
The Next 10 Years in Wireless: A Vision for Enterprise...
By Mike Fitton, Wireless Business Unit Director, Altera
Leveraging Cloud and Big Data to Enable Mobile Work...
By Jim Kaskade, VP and GM, Big Data & Analytics, CSC
Streamlining Integration to Simplify Processes
By Thomas Musgrave, EVP & CIO, AmeriCold Logistics
Farm to Table with Big Data Analytics
By Vin Sharma, Director, Strategic Planning & Marketing, Big...
Security: Most Demanding Concern in This New World of IT
By Federico Flórez, Chief Information & Innovation Officer,...
Embracing Disruptive Innovation
By Barbara Adams, VP, Innovative Technology Solutions, Texas...
The Force of Mobile and Wireless Technology: Driving...
By John Mason, CIO, Bottomline Technologies
Cloud as an Enabler of Media Transformation
By Jamshid Khazenie, CTO, USA Today Network / Gannett
A Tale of Two Service Experiences
By Miguel Gamino, CIO & Executive Director-Department of...
Connecting People and Technology to Deliver the Best...
By Bill Schimikowski, VP, Customer Experience, Fidelity...
By Tom Bressie, Vice President, Oracle Cloud
You better watch out, You better not pout, IOT is...
By John Landwehr, Public Sector CTO, Adobe
The Future is JavaScript and the Emerging Web Development...
By Aaron Gette, CIO, The Bay Club Company
On-Premise versus Cloud: The Better Option
By Denise Zabawski, CIO, Nationwide Children's Hospital
AI is the New UI-AI + UX + DesignOps
By Amit Bahree, Executive, Global Technology and Innovation,...