FFIEC AIO Booklet Deciphered: Architecture, Infrastructure, and Operations Guidance

Report Summary

FFIEC AIO Booklet Deciphered: Architecture, Infrastructure, and Operations Guidance

The booklet is designed to assist FFIEC examiners in conducting examinations based on new technologies and infrastructures.

Tari Schreider
Strategic Advisor

Boston, September 22, 2021 On June 30, 2021, the Federal Financial Institutions Examination Council (FFIEC) issued a new booklet within the FFIEC Information Technology Examination Handbook (IT Handbook), titled “Architecture, Infrastructure, and Operations.” The FFIEC has long seen the need for updated examiner guidance to evaluate today’s technology and threat landscape, recognizing that evolutionary changes in technologies, surpassed guidance presented in the previous operations booklet. This long-overdue revision suggests that financial institutions would be well advised to adjust their approach to risk management from technology-based to enterprise-wide process-focused examinations.

Clients of Aite-Novarica Group’s Cybersecurity service can download this 12-page Impact Brief. To learn more about the topic covered in this Impact Brief, please contact us at [email protected].

This report mentions Federal Deposit Insurance Corporation, Federal Reserve, and National Institute Standards and Technology.

How can we help?

If you have a question specific to your industry, speak with an expert.  Call us today to learn about the benefits of becoming a client.

Talk to an Expert

Receive email updates relevant to you.  Subscribe to entire practices or to selected topics within

Get Email Updates