The Federal Financial Institutions Examination Council (FFIEC) launched a Web page to serve as a central repository for current and future FFIEC-related materials on cybersecurity.
The FFIEC agencies include the Federal Reserve Board, NCUA, Federal Deposit Insurance Corp., Comptroller of the Currency, Consumer Financial Protection Bureau, and the State Liaison Committee.
The agencies aim to raise awareness of cybersecurity risks at financial institutions and the need to identify, assess, and mitigate these risks.
The FFIEC Web page provides links to joint statements, webinars, and other helpful information on cybersecurity, including:
- FFIEC IT Examination HandBook InfoBase;
- Introduction to the FFIEC’s cybersecurity assessment;
- Joint statement on cyberattacks on ATMs and card authorization systems;
- Joint statement on distributed denial of service attacks;
- Alert on open SSL “Heartbleed” vulnerability; and
- Joint statement concerning Microsoft ’s discontinuation of Windows XP.
The launch of this Web page coincided with the start program at more than 500 community institutions. The program, conducted by state and federal regulators, will be completed during regularly scheduled examinations.
Information from the pilot will help regulators make risk-informed decisions to enhance the effectiveness of supervisory programs, guidance, and examiner training.