CONTINUE TO SITE »
or wait 15 seconds

News

FFIEC report poses key questions about cybersecurity

Testing plans across business functions and with third parties will help FIs identify and manage gaps before cyber attacks occur, the council says.

November 4, 2014

This summer, Federal Financial Institutions Examination Council members piloted a cybersecurity assessment at more than 500 community institutions to evaluate the institutions' preparedness to mitigate cybersecurity risks.

Today, the FFIEC released its observations from the assessment in a five-page document, "FFIEC Cybersecurity Assessment General Observations."

According to the report:

Many financial institutions have business continuity and disaster-recovery plans and are able to call on third parties to provide mitigation services when incidents occur. Expanding these to incorporate cyber incident scenarios will improve financial institutions’ response capabilities. Additionally, testing plans across business functions and with third parties will help financial institutions identify and manage gaps before cyber attacks occur.

The report provides themes from the assessment and suggests questions that CEOs and boards of directors might consider when assessing their institutions' cybersecurity preparedness.

In addition to the report, the FFIEC issued a recommendation that financial institutions of all sizes participate in the Financial Services Information Sharing and Analysis Center as part of their process to identify, respond to, and mitigate cybersecurity threats and vulnerabilities.

The FS-ISAC is a non-profit, information-sharing forum established by financial services industry participants to facilitate the public and private sectors' sharing of physical and cybersecurity threat and vulnerability information.

"Participating in information-sharing forums is an important element of an institution’s risk management processes and its ability to identify, respond to, and mitigate cybersecurity threats and incidents," the FFIEC said in a statement of its recommendation.

Download "FFIEC Cybersecurity Assessment General Observations"

Download"Cybersecurity Threat and Vulnerability Monitoring and Sharing Statement"

Related Media

Security
Examining biggest ATM security issues and 4 strategies to prevent them
Security
Banking privacy: 5 benefits for banks, customers
Security
Protecting an ATM's hardware, software by slowing down criminals
On-Demand Webinar
A Masterclass in ATM Security: Global Best Practices and Trends
Presented by Diebold Nixdorf
Recent Posts
Bank of Charles Town to change name to Potomac Bank
2 individuals accused of ATM robbery in San Antonio
Eurasian Bank selects Diebold Nixdorf's self-service software
First National Bank to open 30 branches
Replacing the ATM: Pros and cons of new vs. remanufactured


©2025 Networld Media Group, LLC. All rights reserved.
b'S1-NEW'