REGULATION

The Federal Financial Institutions Examination Council (FFIEC)

The Federal Financial Institutions Examination Council (FFIEC) requires that financial institutions should implement an ongoing security process and institute appropriate governance for the security function, assigning clear and appropriate roles and responsibilities to the board of directors, management, and employees.

Financial institutions must maintain an ongoing information security risk assessment program that effectively:

  • Gathers data regarding the information and technology assets of the organization, threats to those assets, vulnerabilities, existing security controls and processes, and the current security standards and requirements
  • Analyzes the probability and impact associated with the known threats and vulnerabilities to their assets
  • Prioritizes the risks present due to threats and vulnerabilities to determine the appropriate level of training, controls, and assurance necessary for effective mitigation

A strategy should be developed that defines control objectives & establishes an implementation plan. Security strategies should include:

  • Appropriate consideration of prevention, detection, and response mechanisms
  • Implementation of the least permissions and least privileges concepts
  • Layered controls that establish multiple control points between threats and organization assets
  • Policies that guide officers and employees in implementing the security program

As you strive to achieve, exceed and maintain FFIEC guidelines, you’re likely considering the following solutions:

Managed Detection and Response

Comprehensive solutions to detect, prioritize, and address security incidents.

Managed Security Services

24 X 7 X 365 monitoring, management, and system maintenance.

Email Protection Suite

Monitor and manage your email environment with advanced email security and compliance protections.

Cloud Email and Collaboration

Cloud office productivity enhanced with proven security and compliance protection.

Compliance & Risk Services

Assuring security constructs are well-suited to current and future regulatory demands.

Incident Response Readiness

Guidance to manage the complexity of response to a cyber incident.

Why Is SilverSky Your Partner for Achieving FFIEC Guidelines?

 

  • For two decades, we have served more than 1,500 small to mid-sized financial institutions and have been held to the same stringent compliance regulations as many of our clients. SilverSky understands the financial services industry and provides purpose-built compliance and risk management solutions
  • We deliver technology that offers a holistic view of security across your company, not just a single technology area that point products provide
  • We provide flexible and easy reporting across your entire security architecture making compliance reporting much easier
  • We help streamline and centralize your monitoring and management. This means your IT teams are more efficient and free to perform functions that increase your overall security
  • We lessen the strain of technical and human resource complexity so you can continue to grow and add new services while being safe in the knowledge your defenses are stronger than ever

97%

CUSTOMER SATISFACTION

1500+

CREDIT UNION & COMMUNITY BANKS PROTECTED

300+

SECURITY EXPERTS

3000+

SMALL & MID-SIZE BUSINESSES PROTECTED

“SilverSky has helped our end users be more productive and secure and we’re very happy with the high availability levels and outstanding support that we receive from SilverSky.”

-Director, End User Services

How Exposed is Your Business to Cyber Security Threats

Small businesses are increasingly targeted by cyber criminals.

Trusted Cybersecurity for an Uncertain World

Learn more about the suite of SilverSky products and services.

Schedule a Demo

Managed Detection and Response

Comprehensive solutions to detect, prioritize, and address security incidents.

Managed Security Services

24 X 7 X 365 monitoring, management, and system maintenance.

OPTIONS:

Managed Endpoint Detection and Response

Protects against all threat vectors.

Email Protection Suite

Monitor and manage your email environment with advanced email security and compliance protections.

Cloud Email and Collaboration

Cloud office productivity enhanced with proven security and compliance protection.

How does SilverSky's integrated stack of solutions meet your needs?

Compliance and Risk Services

Assess your program and controls, benchmark and identify areas for improvement. Develop your security roadmap for investment and improvements. Effectively measure ROI and impact on your security posture

Incident Response Readiness

Incident Response Plan Development / Review. Incident Response Readiness Review. Emergency Incident Response.

Discuss your compliance, risk management and incident response readiness needs.

Schedule Free 1-on-1 Consultation

Financial Services

1,500+ small & mid-sized financial institutions rely on SilverSky to meet and exceed FFEIC, GLBA and PCI DSS requirements and overall cybersecurity needs.

Healthcare

Hundreds of small & mid-sized healthcare organizations rely on SilverSky to address HIPAA and other regulatory requirements and serve overall cybersecurity needs.

Retail

Small and mid-sized retail organizations count on SilverSky to maintain PCI DSS requirements, secure customer data and reduce cybersecurity threats.

How Exposed Are You?

Take the test to see how your security program compares with other businesses like yours.

Resources

White papers, guides, tools, on-demand webinars, case studies and more. Explore a range of topics. 

Events & Webinars

Blog

Product Sheets

SilverSky product and services information at your fingertips. Product data sheets, compliance matrixes, & brochures.

How Exposed Are You?

Take the test to see how your security program compares with other businesses like yours.

Become A Partner

Partner with SilverSky to tap into the approaching $300 billion+ cybersecurity market.

Talk to one of our partner managers and consider expanding your cybersecurity offerings.

Schedule Partner Exploration Discussion

Share This