|By Business Wire||
|March 10, 2014 12:21 PM EDT||
Promontory Financial Group today announced it has launched a new Web-based tool to assist companies in using a new cybersecurity framework released by the National Institute of Standards and Technology.
Earl Crane is a senior principal at Promontory Financial Group and the former director for federal cybersecurity policy on the White House National Security Staff. (Photo: Business Wire)
The NIST developed the “Framework for Improving Critical Infrastructure Cybersecurity” as directed in a February 2013 executive order that called for a voluntary, risk-based framework incorporating industry-leading practices and standards. Supervisors are likely to draw upon the framework when conducting examinations and updating their examination procedures. It is widely expected to become a critical component of any rigorous cybersecurity program in both financial and nonfinancial institutions.
"Many firms with high-performing cyberrisk management functions are already using elements of the framework internally,” said Earl Crane, a senior principal at Promontory. “However, they are now starting to use the framework to communicate their requirements and hold accountable their vendors, third-party service providers, and outsourced operations.”
The flexible, Web-based Cyberrisk Assessment Tool allows financial institutions to identify, manage, and report on cybersecurity risk, consistent with existing regulatory frameworks. The software, designed by industry experts and former compliance examiners, can be used to guide a company as it uses the NIST framework to improve its cyberrisk management programs and assess the cybersecurity of third parties.
“Regulators have recently noted the potential for third-party vendors to represent a weak link in an institution’s overall information-security system,” Crane said. “We believe this is the first tool to use the framework to manage vendor cyberrisk and reduce third-party risk exposure.”
“While the NIST cybersecurity framework is voluntary, it is emerging as one of the most important blueprints for cyberrisk management in regulated and nonregulated companies,” said Michael Dawson, a managing director at Promontory. “This tool helps companies use the framework in a robust, well-documented, and user-friendly way.”
Promontory Financial Group, headquartered in Washington, D.C., is the world’s foremost expert in financial risk, regulation, and compliance. The firm helps companies and governments around the world manage complex risk and meet their greatest regulatory challenges, thereby making its clients stronger and the financial system safer for consumers. Promontory has offices in New York, San Francisco, Atlanta, and Denver, and affiliate offices in Brussels, Dubai, Hong Kong, London, Milan, Paris, Singapore, Sydney, Tokyo, and Toronto. Eugene A. Ludwig, who served as U.S. comptroller of the currency under President Bill Clinton, founded Promontory in 2001.
Feb. 12, 2016 04:45 AM EST Reads: 401
Feb. 12, 2016 03:45 AM EST Reads: 261
Feb. 12, 2016 03:45 AM EST Reads: 331
Feb. 12, 2016 02:30 AM EST Reads: 219
Feb. 12, 2016 02:00 AM EST Reads: 430
Feb. 12, 2016 01:30 AM EST Reads: 340
Feb. 12, 2016 12:45 AM EST Reads: 400
Feb. 12, 2016 12:00 AM EST Reads: 275
Feb. 11, 2016 11:00 PM EST Reads: 228
Feb. 11, 2016 10:45 PM EST Reads: 363
Feb. 11, 2016 10:00 PM EST Reads: 122
Feb. 11, 2016 05:15 PM EST Reads: 219
SYS-CON Events announced today that Catchpoint Systems, Inc., a provider of innovative web and infrastructure monitoring solutions, has been named “Silver Sponsor” of SYS-CON's DevOps Summit at 18th Cloud Expo New York, which will take place June 7-9, 2016, at the Javits Center in New York City, NY. Catchpoint is a leading Digital Performance Analytics company that provides unparalleled insight into customer-critical services to help consistently deliver an amazing customer experience. Designed...
Feb. 11, 2016 05:00 PM EST Reads: 392
The cloud competition for database hosts is fierce. How do you evaluate a cloud provider for your database platform? In his session at 18th Cloud Expo, Chris Presley, a Solutions Architect at Pythian, will give users a checklist of considerations when choosing a provider. Chris Presley is a Solutions Architect at Pythian. He loves order – making him a premier Microsoft SQL Server expert. Not only has he programmed and administered SQL Server, but he has also shared his expertise and passion w...
Feb. 11, 2016 04:30 PM EST
With the proliferation of both SQL and NoSQL databases, organizations can now target specific fit-for-purpose database tools for their different application needs regarding scalability, ease of use, ACID support, etc. Platform as a Service offerings make this even easier now, enabling developers to roll out their own database infrastructure in minutes with minimal management overhead. However, this same amount of flexibility also comes with the challenges of picking the right tool, on the right ...
Feb. 11, 2016 04:15 PM EST Reads: 182