Transcription of Cybersecurity Assessment Tool
{{id}} {{{paragraph}}}
Paperwork Reduction Act (PRA) OMB Control No. 1557-0328; Expiration date: August 31, 2019 The above OMB Control Number and expiration date pertain to a requirement of the Paperwork Reduction Act and its implementing regulation that a federal agency may not conduct or sponsor, and a person (or organization) is not required to respond to, a collection of information unless it displays a currently valid OMB control number and, if appropriate, an expiration date. See 44 USC 3506(c)(1)(B) and 5 CFR (b)(2)(i), (b)(1). FFIEC Cybersecurity Assessment tool May 2017 FFIEC Cybersecurity Assessment tool Contents May 2017 i Contents Contents .. i User s Guide .. 1 Overview .. 1 Background .. 2 Completing the Assessment .. 2 Part One: Inherent Risk Profile .. 3 Part Two: Cybersecurity Maturity .. 5 Interpreting and Analyzing Assessment 8 Resources .. 10 Inherent Risk Profile .. 11 Cybersecurity Maturity.
Cyber risk programs build upon and align existing information security, business continuity, and disaster recovery programs. The Assessment is intended to be used primarily on an enterprise-wide basis and when introducing new products and services as follows: • Enterprise-wide. Management may review the Inherent Risk Profile and the declarative
Domain:
Source:
Link to this page:
Please notify us if you found a problem with this document:
{{id}} {{{paragraph}}}