FFIEC releases cybersecurity resource guide for financial institutions

October 5, 2022

The Federal Financial Institutions Examination Council (FFIEC), of which NCUA is a member, released an update to the October 2018 Cybersecurity Resource Guide for Financial Institutions.

The programs and tools in the guide are designed for, or otherwise available to, financial institutions. The purpose of this guide is to help financial institutions meet their security control objectives and prepare to respond to cyber incidents.

This version replaces the guide from October 2018 and the use of these resources remains voluntary. FFIEC member organizations do not endorse the listed entities or tools identified therein.

Additionally, in recent years, ransomware incidents have become increasingly prevalent. These incidents continue to evolve in severity and complexity impacting the financial sector and other critical infrastructure organizations.

The resource guide now includes ransomware-specific resources that can be accessed in combating this ongoing, evolving threat.

For more information and to view a link to the updated FFIEC Cybersecurity Resource Guide, visit the NCUA Cybersecurity Resources webpage.