Become a member

CRI Issues Profile Version 2.0

Profile version 2.0 reflects the most significant update to date, expanding scope, coverage, features, and guidance. Washington, D.C.–​The Cyber Risk Institute (CRI) is pleased to release version 2.0 of the CRI Profile—the most expansive revision to date with an enhanced scope, new features, and more mappings to regulations and best practices. This release maintains alignment … Continued

CRI Commends NIST for Publishing an Enhanced Cybersecurity Framework

NIST’s Cybersecurity Framework Includes Key Updates Encouraged by the Financial Sector Washington, D.C.—The Cyber Risk Institute (CRI) commends the National Institute of Standards and Technology’s (NIST) publication of the final Cybersecurity Framework (CSF) 2.0. This version of the CSF reflects important changes in the evolving cybersecurity landscape, most importantly by adding a “Govern” function and … Continued

New CRI Updates Reflect Profile’s Ability to Adapt

Profile version 1.2.1 incorporates guidance to help both the government and financial institutions achieve key objectives. Washington, D.C.–The Cyber Risk Institute (CRI) is pleased to announce new and important updates to the growing body of work related to the Profile. The CRI Profile connects key cybersecurity control principles to guidance from government agencies and can … Continued

Profile Archive

CRI Profile v1.2.1 – Non-Macros File CRI launched publicly in May 2020. This is the third update to the Profile, CRI Profile v1.2.1, released January of 2023. CRI Profile v1.2.1 – Macro-enabled CRI launched publicly in May 2020. This is the third update to the Profile, CRI Profile v1.2.1, released January of 2023. CRI Cloud … Continued

CRI Launches Two New Programs to Support the Financial Sector Ecosystem

CRI’s Affiliate Program will increase access to the Profile in the marketplace, and CRI’s Innovator Program will grow the CRI ecosystem. Washington, D.C.–November 17, 2022. ​The Cyber Risk Institute (CRI) announced today two key programs to meet the growing demand for the CRI Profile* in the financial sector ecosystem. These new programs will offer companies … Continued

CRI Announces Completion of Cloud Profile Extension

Financial Sector and Cloud Security Providers Complete Initiative To Enhance Cybersecurity A joint trade initiative identifies roles and responsibilities between firms and cloud security providers, establishing a mutually beneficial framework for cybersecurity. Washington, D.C.—The Cyber Risk Institute (CRI), the Cloud Security Alliance (CSA), and the Bank Policy Institute-BITS announced today the release of a cloud … Continued

CRI Announces Exciting New Initiative

Axio Joins with Cyber Risk Institute to Deliver Cybersecurity Resilience to Financial Services Institutions Across the Globe New York, NY and Washington, DC — February 2, 2022 — Axio, a leading SaaS provider of cyber risk management and quantification solutions, today announced a new joint initiative with the Cyber Risk Institute (CRI), a non-profit coalition … Continued

CRI Releases Major Update – Version 1.2 – to Financial Services Cyber Security Profile

Version 1.2 dramatically expands the reach of the Profile, incorporating key international cyber expectations for the financial institutions. Today, December 14, 2021, the Cyber Risk Institute (CRI) released Version 1.2 of the Profile: https://cyberriskinstitute.org/the-profile/. The CRI Profile is a widely accepted cyber security regulatory compliance framework. This release is the largest update to the Profile … Continued

CRI Reflects on White House Cyber Summit

With the announcement of the commitments to improve cybersecurity by the participants of the 8/25 meeting at the White House, CRI appreciates President Biden’s determination to improve the overall cybersecurity of our nation and especially that of our critical infrastructure.  There is a shared responsibility between owners and operators of critical infrastructure, and the government … Continued

BACK TO TOP