CUNA
  • Advocacy
    • Priorities we’re fighting for
    • Actions you can take
  • News
  • Learn
  • Compliance
  • Shop
  • Topics
    • Community Service
    • Compliance
    • Credit Union Hero
    • Credit Union Rock Star
    • Credit Union System
    • Directors
    • Human Resources
    • Leadership
    • Lending
    • Marketing
    • Operations
    • Policy & Issues
    • Sales & Service
    • Technology
  • Credit Union Magazine
    • Buyers' Guide
    • COVID-19
    • Digital Edition
    • Credit Union Hero
    • Credit Union Rock Star
    • Subscribe
    • Advertise
    • Contact
  • COVID-19
  • Advertise
  • Awards
    • Nominate Credit Union Hero
    • Nominate Credit Union Rock Star
  • Podcasts
  • Videos
  • Contact
Learn More about Member Value

News

Member Benefits
Learn more
Learn more about the benefits of membership.
Home » FFIEC encourages standardized cybersecurity approach
Policy & Issues

FFIEC encourages standardized cybersecurity approach

August 28, 2019

The Federal Financial Institutions Examination Council (FFIEC) Wednesday issued a statement emphasizing the benefits of using a standardized approach to assess and improve cybersecurity preparedness. Adopting this approach allows institutions to better track progress over time and share best practices with other institutions and regulators.

According to the FFIEC, ”institutions may choose from a variety of standardized tools aligned with industry standards and best practices to assess their cybersecurity preparedness.”

These tools include:

  • FFIEC Cybersecurity Assessment Tool, which provides a measurable and repeatable process for financial institutions to measure preparedness over time;
  • National Institute of Standards and Technology Cybersecurity Framework, a voluntary framework of standards, guidelines and best practices to manage cybersecurity-related risk;
  • Financial Services Sector Coordinating Council Cybersecurity Profile, which is a scalable and extensible assessment for internal and external cyber risk management assessment; and
  • Center for Internet Security Critical Security Controls, a prioritized set of actions to protect an organization and data from known cyber attack vectors.

While the FFIEC does not endorse any particular tool, these standardized tools support institutions in their self-assessment activities. 

However, the tools are not examination programs and the FFIEC members take a risk-focused approach to examinations. As cyber risk evolves, examiners may address areas not covered by all tools.

Credit Union Magazine - Winter 2020

Winter 2020

Credit Union Magazine’s Winter 2020 edition features CUNA’s 2021 lending outlook, CEO insights on adjusting to the pandemic, and board recruitment strategies.
Digital Edition •  Subscribe

Trending

  • Compliance: 2020 Year in Review, Checklist now available

  • CUNA sends recommendations to incoming Biden administration

  • Compliance: NCUA, agencies issue FAQs on SAR, other AML requirements

Tweets by CUNA_News

Polls

Will you ask employees to receive the coronavirus vaccine?

View Results
More

Champion of America’s Credit Unions

Credit Union National Association is the only national association that advocates on behalf of all of America’s credit unions. We work tirelessly to protect your best interests in Washington and all 50 states. We fuel your professional growth at every level and champion the credit union story at every turn.

More CUNA

  • About
  • Careers
  • Contact Us
  • Recommended Websites
  • Privacy Policy

Resources for

  • CUNA Board Members
  • Credit Union Advocates
  • Leagues
  • Press
  • Vendors