Tag Archives: regulation

Review of the new FFIEC Cybersecurity Assessment Tool

n light of the increasing volume and sophistication of cyber threats, organizations needs to identify their relevant risk, determine their cybersecurity posture and act upon it. That much is clear, but it is easier said than done. Organizations needs not only an agreed methodology to work by, but also a tool to help them achieve that goal and properly assess their threat landscape, control maturity and better prepare for the upcoming threats.
The FFIEC (Federal Financial Institutions Examination Council) has developed a Cybersecurity Assessment Tool, which was released on June 2015.

Cybersecurity and corporate responsibility – It’s time for Regulators to put their foot down

One in four Americans (25 percent) fell victim to information security breaches in the past year, according to a new survey from the AICPA conducted by Harris Poll. This represents a staggering growth from last year’s survey (about 11%)See-  http://www.accountingtoday.com/blogs/accounting-tomorrow/news/one-in-four-americans-victims-of-information-security-breaches-survey-finds-74353-1.html And even more troubling figure is that 86 percent of adults reported some concern in

Read More

Israeli Regulator Directs Banks to focus on Cyber security management (a guest post by Anne F. La Lena)

Congratulations to David Zaken, Supervisor of Banks at the Bank of Israel, for wading in, no, for jumping in with both feet in potentially shark-infested waters of cyber regulation, with the recent issuance of “Directive 361”, Cyber-security Management, aimed at banks and credit card companies. (The original directive in Hebrew can found here: http://www.boi.org.il/he/BankingSupervision/SupervisorsDirectives/DocLib/361.pdf) The purpose

Read More