News & Resources
Security Diligence Blog
News
Resources
Cybersecurity
The National Institute of Standards and Technology (NIST) Cybersecurity Framework is a risk-based approach to evaluate and guide organizations in the management of cybersecurity risk based on business needs and enterprise risk management processes. Click here to learn more.
The Federal Financial Institutions Examination Council (FFIEC) Cybersecurity Assessment Tool is available to assist institutions in identifying risks and assessing cybersecurity preparedness. Combined with other methodologies, this tool can be used to perform a self-assessment to assist in shaping risk management processes and programs. Click here to learn more.
The SANS Institute is a private U.S. for-profit company founded in 1989 that specializes in information security, cybersecurity training and professional certifications. The ABCs of Cybersecurity Terms is a free resource compiled by Keith Palmgren, SANS Senior Instructor, and provides a comprehensive glossary of cybersecurity terminology that will quickly get you up to speed on the industry’s terms and meanings. Click here to learn more.
Third-Party Risk
Shared Assessments, the trusted source in third-party risk assurance, is a member-driven, industry-standard body with tools and best practices that injects speed, consistency, efficiency, and cost savings into the control assessment process. Shared Assessment has released a number of publications and white papers designed to assist organizations in assessing third-party vendors and raise awareness of this key risk area with company boards and the C-Suite. Click here to learn more.