on - edited on by
JordanBauman
Cybersecurity threats exploit the increased complexity and connectivity of critical infrastructure systems, which places national security, the economy, and public safety at risk. To combat these cyber risks, the Federal Financial Institutions Examination Council (FFIEC) developed a risk-based Cybersecurity Framework to provide financial institutions industry standards and best practices to help manage cybersecurity risks.
Archer FFIEC-Aligned Cybersecurity Framework provides straightforward guidelines for consistently addressing and managing cybersecurity risks. Profile owners can determine their inherent risk levels, prioritize, and scope profile elements, and develop plans to achieve their desired or targeted risk and maturity levels for their organization’s cybersecurity program. Assessors can evaluate these profiles against the FFIEC Cybersecurity Assessment Maturity categories to determine the current maturity level and designate a target maturity level. Previous assessments can be archived for comparison with current Profile and measure progress. Reports and dashboards provide clear insight to the cybersecurity current state and progress being made toward the desired cybersecurity state.
Benefits
- Offers a common language to communicate requirements and progress among stakeholders (internal, partners, contractors, suppliers)
- Provides a method to understand larger cybersecurity ecosystem
- Apply the FFIEC best practices of risk management to improve cybersecurity and resiliency of critical infrastructure
Key Features
Archer FFIEC-Aligned CSF enables organizations to:
- Create an Inherent Risk Profile identifying inherent risk before implementing controls
- Risk Assess the operational environment to discern the likelihood of a cybersecurity event and the impact
- Identify a Target Maturity Level that focuses on the assessment categories that describe the desired cybersecurity outcomes
- Analyze the Current Maturity Level to the Target Maturity Level to determine gaps
- Implement an Action Plan to identify which steps to take to remediate the gaps focusing on standards, guidelines, and practices that work best for the organization's needs
Solution and Platform Information
- Solution Area: IT & Security Risk Management
- Prerequisite Use Cases: This offering requires the Issues Management use case
- Supported Platform Version: Archer Platform Release 6.10
- Supported Archer Environments:
- On-Premises
- Archer Hosted
- Archer SaaS
Archer On-Demand Application (ODA) Licenses
This offering requires three (3) Archer On-Demand Application (ODA) licenses.
In addition one (1) questionnaire is required for this offering. This requires a licensed use case that enables questionnaires in order for this questionnaire to function.
For More Information
To learn more about the Archer FFIEC-Aligned CSF:
- Watch a short video;
- Review the Implementation Guide; and
- Download the Installation Package.
The Archer FFIEC-Aligned CSF App-Pack is an offering provided through the Archer Exchange to help you manage your Archer use cases. To learn more about the Archer Exchange, please visit the Archer Exchange on the Archer Community.
For Additional Support
To learn more about this offering, please contact your Account Rep for additional details. For technical support questions regarding this offering, please open a support case.
Profile Owner Dashboard
Profile Assessor Dashboard
