On August 10-14, 2020, the Cybersecurity and Infrastructure Security Agency (CISA) conducted Cyber Storm 2020 (CS 2020), the seventh iteration of the national capstone cyber exercise that brings together the public and private sectors to simulate response to a cyber crisis impacting the Nation’s critical infrastructure
May 27, 2020
Today, the FSSCC released Financial Sector Return to Normal Operations Resource Guide for U.S. financial services firm’s decision makers to leverage as they determine how to safely return workers to offices and other facilities.
March 23, 2020
Washington, DC - The Cybersecurity and Infrastructure Security Agency released a Memorandum on Identification of Essential Critical Infrastructure Workers during COVID-A9 Response. The list identifies workers who conduct a range of operations and services that are essential to continued critical infrastructure viability.
October 25, 2018
The Financial Services Sector Coordinating Council (FSSCC) released the new Cybersecurity Profile.
(UPDATE: The Cybersecurity Profile is now maintained, updated, and managed by the Cyber Risk Institute "CRI" and was last updated by CRI in November, 2020.)
The Profile provides a framework that integrates widely used standards and supervisory expectations to help guide financial institutions in developing and maintaining cybersecurity risk management programs.
The Profile is the result of two years’ work and collaboration among financial institutions, trade groups, and government agencies which was spearheaded by FSSCC, the American Bankers Association, Bank Policy Institute’s technology policy subdivision BITS, Futures Industry Association, Global Financial Markets Association (and its member associations of the Association for Financial Markets in Europe, the Asia Securities Industry & Financial Markets Association, and the Securities Industry and Financial Markets Association), and the Institute of International Bankers.
The profile was developed in response to a survey of chief information security officers from financial institutions that indicated nearly 40% of their time was spent on compliance and reconciling competing, duplicative, redundant, and inefficient cybersecurity supervisory examinations.
January 22, 2018
On January 18, the NIST Cyber Security Framework Comment Letter Task Group responded to the National Institute of Standards and Technology’s request for public comment on its second draft of version 1.1 (“Draft 2”) of its Framework for Improving Critical Infrastructure Cybersecurity. Read the letter here