FFIEC urges standardized cybersecurity approach

Agency Rule-Making & Guidance FFIEC Privacy/Cyber Risk & Data Security

On August 28, the FFIEC issued a press release emphasizing the benefits of implementing a standardized cybersecurity preparedness approach. The FFIEC noted that firms who adopt a standardized approach are “better able to track their progress over time, and share information and best practices with other financial institutions and with regulators.” Highlighted are several standardized tools for financial institutions to use when assessing and improving their level of cybersecurity preparedness, including the FFIEC Cybersecurity Assessment Tool, the Financial Services Sector Coordinating Council Cybersecurity Profile, the National Institute of Standards and Technology Cybersecurity Framework, and the Center for Internet Security Critical Security Controls.