Cybersecurity Regulatory Update

Cybersecurity regulatory guidance and scrutiny has increased dramatically in the past few years. Regulatory changes have followed the steady increase in security incidents financial intuitions have experienced. The FFIEC has taken the charge by releasing many of the new or updated resources, including the updated Information Security Booklet and the new Retail Payments guidance around mobile devices.

The FFIEC has also released a new assessment process for evaluating the institutions inherent risk, setting risk goals, and to ensure proper mitigating controls are in place. These updates have allowed institutions to better understand their expectations and have provided useful information in managing risk. In addition to the regulatory guidance, this session will discuss how regulatory examination programs have been updated to measure cybersecurity preparedness.

Covered Topics:

  • FFIEC Cybersecurity Assessment Update
  • FFIEC IT Management Key Changes
  • Chief Information Security Officer (CISO)
  • Information Security Booklet
  • FFIEC Mobile Financial Services Technologies
  • FDIC InTREx Adoption
  • Exam Summary