FFIEC Assessment Tool: Necessary to Combine with Assessment

Viruses and malware aren’t going anywhere. Cyber threats are constantly evolving in an attempt to stay ahead of the curve. Now more than ever, it’s important for every cybersecurity firm to stay one step ahead of the would-be cyber criminals. Federal cybersecurity analysts and experts created the FFIEC cybersecurity Assessment tool as answer to cybersecurity threats.

The FFIEC cybersecurity assessment tool is a free resource available on the federal website that details the potential risks that business face in the fast moving digital world. The tool acts as an assessment and guide with the aim being to educate and foster an awareness for cybersecurity. Businesses follow the guide step by step, honestly and precisely mapping out the potential cybersecurity threats inherent in their business dealings.

Federal cybersecurity analysts created the tool as a means for business owners and companies to assess risks themselves, but the fact remains that many companies need the guidance and expertise of professional cybersecurity firms. The FFIEC cybersecurity assessment tool is meant purely to discover and weed out vulnerabilities in the company. If a weak point or vulnerability is discovered the advice given states to create a strategy to reduce the inherent risk. Although good advice, there are no further details.

This is where the help of an IT security company can come in handy. ERMProtect recommends using the tool to discover risk and then assessing the need for a professional cybersecurity firm to strengthen vulnerabilities thereafter. Federal cybersecurity standards are a great starting point, but not the final answer.

Stop Phishing Attacks with ERMProtect's Security Awareness Training

Turn your employees into a human firewall with our innovative Security Awareness Training.

Our e-learning modules take the boring out of security training.

ERMProtect's Weekly Newsletter

Get a curated briefing of the week's biggest cyber news every Friday.

Intelligence and Insights

NIST Cybersecurity Framework

Complete Guide to the NIST Cybersecurity Framework 2.0

In this comprehensive guide, we explain in simple terms every aspect of complying with the NIST Cybersecurity Framework 2.0 …
Musings From a Pen Tester’s Diary

Musings From a Penetration Tester’s Diary – Part 2

We asked Akash to take a trip down memory lane and discuss some of his more interesting intrusion cases. This is Part 2 of “Musings from Pen Tester’s Diary.” …
Musings From a Pen Tester’s Diary

Musings From a Penetration Tester’s Diary – Part 1

Ever want to peek inside the mind of an ethical hacker? Akash Desai, our Director of IT Consulting for 18 years, is sharing his diary of experiences “hacking” banks, factories, fire departments, airports, etc …