Report

FFIEC AIO Booklet Deciphered: Architecture, Infrastructure, and Operations Guidance

The booklet is designed to assist FFIEC examiners in conducting examinations based on new technologies and infrastructures.
/

Boston, September 22, 2021 – On June 30, 2021, the Federal Financial Institutions Examination Council (FFIEC) issued a new booklet within the FFIEC Information Technology Examination Handbook (IT Handbook), titled “Architecture, Infrastructure, and Operations.”The FFIEC has long seen the need for updated examiner guidance to evaluate today’s technology and threat landscape, recognizing that evolutionary changes in technologies, surpassed guidance presented in the previous operations booklet. This long-overdue revision suggests that financial institutions would be well advised to adjust their approach to risk management from technology-based to enterprisewide process-focused examinations.

Clients of Aite-Novarica Group’s Cybersecurity service can download this 12-page Impact Brief. To learn more about the topic covered in this Impact Brief, please contact us at [email protected].

This report mentions Federal Deposit Insurance Corporation, Federal Reserve, and National Institute Standards and Technology.

Related Content

Proceed With Caution: CISOs May Be Personally Liable Under New Rules

The legal climate appears to be changing, potentially impacting the role of the CISO.

Cyber Risk Decisioning: Beyond Measurement

This strategy precisely measures and describes the overall costs and business impact of a cyber event.

The 100-Day CISO Reset Plan

CISOs today should focus on outcomes that provide meaningful reductions in operational risk.

Get Summary Report

"*" indicates required fields

Name*
This field is for validation purposes and should be left unchanged.