Cyber attacks are ever-evolving, and financial institutions must have a multi-layered approach to combat these threats. The U.S. Department of Homeland Security’s Cybersecurity and Infrastructure Security Agency (CISA), the Federal Bureau of Investigation (FBI), and Federal and State Banking Agencies recommend all financial institutions revisit Cybersecurity Programs and ensure safeguards are in place to identify and detect cyber threats, to reduce the likelihood and impact of potential compromises, and to ensure all stakeholders have a heightened awareness of malicious cyber threats.
The following are some Cybersecurity best practices that should be periodically completed and/or reviewed to proactively prepare for potential cyber threats:
- Board-approved Information Security Program, Cybersecurity Policy, Incident Response Plans, Business Continuity/Disaster Recovery Plans
- IT Audits, Network Vulnerability Assessments, Penetration Tests
- Cybersecurity Risk Assessments
- Disaster Recovery and Incident Response Testing
- Social Engineering Testing
- Board and Employee Awareness Training
If your organization has not performed or updated any of these best practices within the last twelve months, we encourage you to Contact Us for more information. We can help ensure your organization is prepared and protected!