Washington, D.C. – On April 28, 2021, the Reserve Bank of New Zealand listed the Cyber Risk Institute Financial Services Cybersecurity Profile (the Profile) in its Guidance on Cyber Resilience as one of its recommended frameworks for cyber compliance. Josh Magri, Managing Director of CRI, issued the following statement in response to the Reserve Bank’s … Continued
Washington, D.C. – Today, the European Union Agency for Cybersecurity (referred to by its original acronym, ENISA) recognized the Cyber Risk Institute Financial Services Cybersecurity Profile (the Profile) in a new report published to outline major cybersecurity initiatives that could benefit financial services participants as they navigate the EU cybersecurity landscape. The report describes the … Continued
Washington D.C. — On Nov. 12, 2020, the Cyber Risk Institute (CRI) released an update to its Profile to expand the Profile’s offerings and increase its utility for a vital segment of the financial services industry – insurers and the insurance industry. This Version 1.1 incorporates the National Association of Insurance Commissioners (NAIC) Financial Condition Examiners Handbook … Continued
Yesterday, the Cyber Risk Institute (CRI) sent a letter to the Federal Reserve Board (FRB), the Federal Deposit Insurance Corporation (FDIC) and the Office of the Comptroller of the Currency (OCC) that acknowledged the inclusion of the CRI Cybersecurity Profile[1] within a report on operational resilience issued jointly by the three agencies. In this letter, CRI … Continued
Washington, DC – Ahead of a planned summit in January, the World Economic Forum (WEF) FinTech Cybersecurity Consortium — a consortium made up of the world’s most prominent technology companies, governments and international non-government organizations — published a report on July 23 identifying the Cyber Risk Institute (CRI) — launched in May 2020 by the Bank … Continued
The Commission is the latest to voice its support for the Profile, which helps financial institutions develop and maintain cybersecurity risk management programs. Washington, DC – In an official statement today, the Commodity Futures Trading Commission (CFTC) listed the Cybersecurity Profile — previously maintained by the Financial Services Sector Coordinating Council (FSSCC) and now developed … Continued
Washington, DC – To more effectively support the cyber security and resiliency of the world’s financial institutions, the Bank Policy Institute today led a coalition of trade associations and financial institutions to create the Cyber Risk Institute (CRI). CRI is a coalition of more than 31 firms and growing, representing the entire spectrum of the … Continued
A survey of chief information security officers from financial institutions that indicated nearly 40% of their time was spent on compliance and reconciling competing, duplicative, redundant, and inefficient cybersecurity supervisory examinations.
FFIEC Announces that the Cybersecurity Profile is Acceptable as a Standardized Assessment
BACK TO TOP
