Become a member

CRI Releases Major Update – Version 1.2 – to Financial Services Cyber Security Profile

Version 1.2 dramatically expands the reach of the Profile, incorporating key international cyber expectations for the financial institutions. Today, December 14, 2021, the Cyber Risk Institute (CRI) released Version 1.2 of the Profile: The CRI Profile is a widely accepted cyber security regulatory compliance framework. This release is the largest update to the Profile … Continued

CRI Reflects on White House Cyber Summit

With the announcement of the commitments to improve cybersecurity by the participants of the 8/25 meeting at the White House, CRI appreciates President Biden’s determination to improve the overall cybersecurity of our nation and especially that of our critical infrastructure.  There is a shared responsibility between owners and operators of critical infrastructure, and the government … Continued

CRI Profile Designated Major Cybersecurity Initiative in Europe by Leading EU Cybersecurity Regulator

Washington, D.C. – Today, the European Union Agency for Cybersecurity (referred to by its original acronym, ENISA) recognized the Cyber Risk Institute Financial Services Cybersecurity Profile (the Profile) in a new report published to outline major cybersecurity initiatives that could benefit financial services participants as they navigate the EU cybersecurity landscape. The report describes the … Continued

CLOSED: RFP Release for Building Online Profile Platform

CRI is taking the Profile to the next level. We are looking for a partner to develop an online Profile platform, which will serve as a web-based solution enabling the presentation of the questions from the Profile at scale. This will provide an efficient user interface, the ability to incorporate evidence directly into the Profile … Continued

CRI Submits Letter To FRB, FDIC and OCC in Response To the Profile’s Inclusion in Joint Agency Report on Operational Resilience

Yesterday, the Cyber Risk Institute (CRI) sent a letter to the Federal Reserve Board (FRB), the Federal Deposit Insurance Corporation (FDIC) and the Office of the Comptroller of the Currency (OCC) that acknowledged the inclusion of the CRI Cybersecurity Profile[1] within a report on operational resilience issued jointly by the three agencies. In this letter, CRI … Continued

World Economic Forum Report Lists CRI Profile’s Benefits to FinTechs

Washington, DC – Ahead of a planned summit in January, the World Economic Forum (WEF) FinTech Cybersecurity Consortium — a consortium made up of the world’s most prominent technology companies, governments and international non-government organizations — published a report on July 23 identifying the Cyber Risk Institute (CRI) — launched in May 2020 by the Bank … Continued

CFTC Issues Support for Standardizing Cybersecurity Preparedness Using Cyber Risk Institute’s Profile

The Commission is the latest to voice its support for the Profile, which helps financial institutions develop and maintain cybersecurity risk management programs. Washington, DC – In an official statement today, the Commodity Futures Trading Commission (CFTC) listed the Cybersecurity Profile — previously maintained by the Financial Services Sector Coordinating Council (FSSCC) and now developed … Continued