Featured Product

    FFIEC Encourages Standardized Approach for Cybersecurity Preparedness

    August 28, 2019

    FFIEC members emphasized the benefits of using a standardized approach to assess and improve cybersecurity preparedness. The members note that firms adopting a standardized approach are better able to track their progress over time and share information and best practices with other financial institutions and with regulators. FFIEC members welcome collaborative approaches to advance and support cyber preparedness and enhance the efficiency and effectiveness of the supervisory process.

    Institutions may choose from a variety of standardized tools aligned with industry standards and best practices to assess their cybersecurity preparedness. These tools include the following:

    • FFIEC Cybersecurity Assessment Tool
    • National Institute of Standards and Technology (NIST) Cybersecurity Framework
    • Financial Services Sector Coordinating Council (FSSCC) Cybersecurity Profile
    • Center for Internet Security Critical Security Controls

    While FFIEC does not endorse any particular tool, these standardized tools support institutions in their self-assessment activities. The tools are not examination programs and the FFIEC members take a risk-focused approach to examinations. As cyber risk evolves, examiners may address areas not covered by all tools.

     

    Related Links

    Keywords: Americas, US, Banking, Insurance, Securities, Cyber Risk, Standardized Approach, Cyber Preparedness, Cyber Security, FFIEC

    Related Articles
    News

    FDIC Releases Economic Scenarios for Stress Testing in 2020

    FDIC released the hypothetical economic scenarios for use in the upcoming stress tests for covered institutions with total consolidated assets of more than USD 250 billion.

    February 14, 2020 WebPage Regulatory News
    News

    EBA Acknowledges EC Adoption of Amended Supervisory Reporting Standard

    EBA acknowledged the adoption, by EC, of an Implementing Act with regard to the common reporting (COREP) and financial reporting (FINREP) changes, in accordance with the Capital Requirements Regulation or CRR.

    February 14, 2020 WebPage Regulatory News
    News

    APRA and ASIC Welcome Proposed Reforms for Superannuation Sector

    APRA and the Australian Securities and Investments Commission (ASIC) have jointly welcomed the proposed legislative reforms increasing the role of ASIC in the superannuation sector.

    February 14, 2020 WebPage Regulatory News
    News

    ESMA Responds to EC Consultation on Review of Benchmarks Regulation

    ESMA published its response to EC consultation on review of the Benchmarks Regulation in EU.

    February 14, 2020 WebPage Regulatory News
    News

    ISDA Guide on Smart Contracts for Equity and Interest Rate Derivatives

    ISDA has published the fourth and fifth installments in a series of legal guidelines for smart derivatives contracts.

    February 13, 2020 WebPage Regulatory News
    News

    FED Paper Describes FLARE, A Top-Down Model for Stress Testing

    FED published a technical paper that describes the Forward-Looking Analysis of Risk Events (FLARE) model.

    February 13, 2020 WebPage Regulatory News
    News

    EC Rule Updates Data for Calculations Under Solvency II Reporting

    EC published the Implementing Regulation 2020/193, which lays down technical information for the calculation of technical provisions and basic own funds for reporting with reference dates from December 31, 2019 to March 30, 2020, in accordance with the Solvency II Directive (2009/138/EC).

    February 13, 2020 WebPage Regulatory News
    News

    EIOPA Publishes Supervisory Convergence Plan and Suptech Strategy

    EIOPA published the strategies for cyber underwriting and supervisory technology (suptech), in response to the evolving insurance landscape.

    February 12, 2020 WebPage Regulatory News
    News

    EBA Proposes Guide on Sectoral Exposures to Apply Systemic Risk Buffer

    EBA launched a consultation on the guidelines on appropriate subsets of sectoral exposures to which competent or designated authorities may apply a systemic risk buffer (SyRB), in accordance with the Capital Requirements Directive (CRD).

    February 12, 2020 WebPage Regulatory News
    News

    ISDA Paper Outlines Developments on Risk-Free Rate Adoption in 2020

    ISDA published a research paper that examines several major upcoming developments on the adoption of risk-free rates in 2020.

    February 12, 2020 WebPage Regulatory News
    RESULTS 1 - 10 OF 4676