Cybersecurity Baseline Assessment (FFIEC)
This library of Cybersecurity Playbooks provides a set of fully loaded and editable templates that represent the core of what is generally required by management (including process owners), boards of directors and their audit committees, as well as internal and external auditors of relevant organizations, to document, assess, test, report and oversee the design and operating effectiveness of the typical key internal controls on which management is reliant to maintain compliance with Cybersecurity regulatory requirements.
They are drawn from a range of authoritative sources including the National Institute of Standards and Technology (NIST), the Federal Financial Institutions Examination Council's (FFIEC), the Department of Defense, the SEC's Office of Compliance Inspections and Examinations (OCIE), and the New York Department of Financial Services (NYDFS).
Download the Playbook
Unlock access to a wealth of information.
What is the Cybersecurity Baseline Assessment (FFIEC) Playbook?
The Cybersecurity Baseline Assessment (FFIEC) Playbook addresses the following areas:
- DOMAIN 1: Cyber Risk Management and Oversight
- DOMAIN 2: Threat Intelligence and Collaboration
- DOMAIN 3: Cybersecurity Controls
- DOMAIN 4: External Dependency Management
- DOMAIN 5: Cyber Incident Management and Resilience
You Also Get
Policy Document Template
These templates are designed to be a starting point for your clients, which can be tailored for your client's specific organizational needs.
Overview Flow Charts
A diagrammatic representation of the flow of assessment activities within your playbook.
Our instructions for use. These are the same for all our playbooks, once you know how to use one, you can use them all.
A PowerPoint tutorial on the specific playbook, covering the most important aspects of this area of assessment.
Based on Authoritative Sources
Sign up for our newsletter
and get the best of GRC Playbook straight to your inbox.