The National Institute of Standards and Technology (NIST) Cybersecurity Framework is a risk-based approach to evaluate and guide organizations in the management of cybersecurity risk based on business needs and enterprise risk management processes. Click here to learn more.
The Federal Financial Institutions Examination Council (FFIEC) Cybersecurity Assessment Tool is available to assist institutions in identifying risks and assessing cybersecurity preparedness. Combined with other methodologies, this tool can be used to perform a self-assessment to assist in shaping risk management processes and programs. Click here to learn more.
Shared Assessments, the trusted source in third-party risk assurance, is a member-driven, industry-standard body with tools and best practices that injects speed, consistency, efficiency, and cost savings into the control assessment process. Shared Assessment has released a number of publications and white papers designed to assist organizations in assessing third-party vendors and raise awareness of this key risk area with company boards and the C-Suite. Click here to learn more.