The Cyber Risk Institute (CRI) is a not-for-profit coalition of financial institutions and trade associations formerly known as the Financial Services Sector Coordinating Council (FSSCC). The mission of the CRI is to sharpen cybersecurity to protect the global economy.
The Cyber Risk Institute (CRI) Cybersecurity Profile is a scalable and extensible assessment that financial institutions of all types can use for internal and external (i.e., third party) cyber risk management assessment and as a mechanism to evidence compliance with various regulatory frameworks within the United States and globally. The Profile assists institutions in assessing their cybersecurity risk management governance, processes, capabilities, and regulatory compliance posture as expected against the various Impact Tier levels to which they correspond. In understanding their posture, institutions can then develop plans to close any identified gaps.
This content is available in English only.
Mappings for the Cyber Risk Institute (CRI) Cybersecurity Profile authoritative source content to the Archer Control Standard Library are available in the authoritative source content pack.
The Cyber Risk Institute (CRI) Cybersecurity Profile authoritative source content is available with the use of the Archer Policy Program Management use case, the Archer IT Policy Program Management use case, and/or the Archer Assessment & Authorization use case. No additional license is required.
For More Information
To learn more about the Cyber Risk Institute (CRI) Cybersecurity Profile Authoritative Source Content: