on 2019-02-0404:11 PM - edited on 2022-06-0905:50 PM by JordanBauman
Cybersecurity threats exploit the increased complexity and connectivity of critical infrastructure systems, which places national security, the economy, and public safety at risk. To combat these cyber risks, the Federal Financial Institutions Examination Council (FFIEC) developed a risk-based Cybersecurity Framework to provide financial institutions industry standards and best practices to help manage cybersecurity risks.
Archer FFIEC-Aligned Cybersecurity Framework provides straightforward guidelines for consistently addressing and managing cybersecurity risks. Profile owners can determine their inherent risk levels, prioritize, and scope profile elements, and develop plans to achieve their desired or targeted risk and maturity levels for their organization’s cybersecurity program. Assessors can evaluate these profiles against the FFIEC Cybersecurity Assessment Maturity categories to determine the current maturity level and designate a target maturity level. Previous assessments can be archived for comparison with current Profile and measure progress. Reports and dashboards provide clear insight to the cybersecurity current state and progress being made toward the desired cybersecurity state.
Offers a common language to communicate requirements and progress among stakeholders (internal, partners, contractors, suppliers)
Provides a method to understand larger cybersecurity ecosystem
Apply the FFIEC best practices of risk management to improve cybersecurity and resiliency of critical infrastructure
Archer FFIEC-Aligned CSF enables organizations to:
Create an Inherent Risk Profile identifying inherent risk before implementing controls
Risk Assess the operational environment to discern the likelihood of a cybersecurity event and the impact
Identify a Target Maturity Level that focuses on the assessment categories that describe the desired cybersecurity outcomes
Analyze the Current Maturity Level to the Target Maturity Level to determine gaps
Implement an Action Plan to identify which steps to take to remediate the gaps focusing on standards, guidelines, and practices that work best for the organization's needs
Solution and Platform Information
Solution Area: IT & Security Risk Management
Prerequisite Use Cases: This offering requires the Issues Management use case
The Archer FFIEC-Aligned CSF App-Pack is an offering provided through the Archer Exchange to help you manage your Archer use cases. To learn more about the Archer Exchange, please visit the Archer Exchange on the Archer Community.
For Additional Support
To learn more about this offering, please contact your Account Rep for additional details. For technical support questions regarding this offering, please open a support case.