Mastering the FFIEC Cybersecurity Assessment Tool

Completing the Cybersecurity Assessment Tool (CAT) is a critical step in maintaining compliance with FFIEC guidance, the CAT is only one of the steps in a series of necessary process enhancements.

This session will review the expectations established within the guidance, review how the assessment tool works, and provide answers and insight surrounding issues that have surfaced. The Cybersecurity Assessment Tool is the most significant regulatory publication released in years, and SBS will provide the processes necessary to fully utilize its results. Join us to explore the governance side of cybersecurity with documented policies and how to effectively integrate cybersecurity into your audit processes.

Covered Topics

The following topics will be addressed in this presentation:

  • Cybercrime overview
  • Board/CEO cyber responsibilities
  • FFIEC Inherent Risk Process
  • FFIEC Cybersecurity Maturity
  • Regulatory requirements to complete
  • Setting Cyber Risk Appetite
  • Gap Analysis and other steps after the risk assessment
  • Cyber Policy and Programs
  • Cyber Auditing
  • What to expect next

Who Should Attend?

Information Security Officer, IT Manager, Risk Officer, Internal Auditor, Board members, or other management team members looking for a solid understanding of the cybersecurity assessment process.