New CyberStrong platform updates allow customers to quickly align with the Financial Services Sector Cybersecurity Profile and harmonize compliance standards across FFIEC, NIST, PCI, and others supported by patented automation.
CyberSaint, the developer of the leading platform for automated, intelligent cybersecurity program management, today announced the availability of new features supporting the Financial Services Sector Cybersecurity Profile within the CyberStrong platform, including automated mappings between those standards and the NIST Cybersecurity Framework, FFIEC, and others. These updates are supported by CyberSaint’s existing patented technology, which is used to optimize program performance and eliminate manual intervention for assessments, remediation, and reporting.
The Financial Services Sector Coordinating Council (FSSCC) cybersecurity profile was created by the Bank Policy Institute (BPI), leading organizations, and institutions to fulfill the need for a more efficient, tailored, and easily communicated framework to leverage across the financial services sector. The profile is designed for all financial services organizations from banking, asset management, broker-dealers, insurance, to market utilities. CyberSaint’s update was shaped in part by feedback from the BPI and some of the world’s largest and most innovative financial services, payment, and banking organizations. CyberSaint’s CyberStrong platform supports various risk and compliance program use cases, allowing customers to build cybersecurity resilience from assessment to boardroom. The platform scales to support extensive cyber risk transformation projects undergone by Fortune 100 customers while also meeting the needs of regional banks and credit unions’ continuous assessment, risk, compliance, and audit programs. This flexibility and agility, paired with a robust and visionary feature set, is a fundamental reason why CyberSaint has been named a key competitor in the integrated risk management market.
"CyberSaint’s vision is a key reason why partnering with the team is so exciting for us," stated Kerri Keller, Consulting Risk Leader and Senior Manager at EY. "For our joint customers, the CyberStrong platform’s automation, alignment with industry standards, and ease of deployment have been paramount to their success. Our enterprise CISO partners want to create narratives around their strategic plans for compliance and risk management initiatives, proposed solutions, return on security investment, and most importantly business enablement."
CyberSaint’s new update enables customers to measure, track, and report on financial services sector compliance standards, including the Financial Services Sector Cybersecurity Profile, FFIEC, New York Department of Financial Services regulation (23 NYCRR 500), PCI, and any other standard. CyberStrong also provides advanced automation via integrations with the security tech stack paired with patented Natural Language Processing (NLP) and additional Machine Learning (ML) applications to eliminate a large portion of the previously manual assessment and reporting process. For organizations aligning with many frameworks and standards, CyberStrong allows for harmonization between and across assessments, offering an assess once, comply many approach across standards such as NIST SP 800-53, NIST CSF, PCI, FFIEC, ISO, 23 NYCRR 500, CIS 20, and others.
Beyond compliance, security and risk leaders within financial services organizations can dynamically manage new and unprecedented risks within CyberStrong’s risk register by tracking changes, gaps, and trends as risks are mitigated, accepted, transferred, or avoided. Customers readily standardize on Risk Quantification methodologies such as the FAIR model, NIST 800-30, and Return on Security Investment (ROSI) to drive clear communication and informed decision-making. Additionally, CyberStrong’s newly added solution-cost modeling functionality allows customers to compare annualized solution plans to determine the most effective risk mitigation strategies.
"The financial services sector has been at the forefront of risk management for years, and we are thrilled to introduce a specialized offering to support their integrated risk management strategies and cyber risk initiatives. We are excited to benefit from their experience and feedback as much as they benefit from CyberStrong," said Padraic O’Reilly, Chief Product Officer at CyberSaint.
Register now for CyberSaint’s upcoming Webinar entitled, "Incorporating the Financial Services Sector Profile (FSSCC) into Your Compliance Strategy" airing live on November 12th, 2020 at 3:00pm EST / 12:00pm PST.
CyberSaint’s mission is to empower all organizations to build a cybersecurity program that is as clear, actionable, and measurable as any other business function. Teams and executives across information security and beyond use CyberSaint’s CyberStrong platform to build cybersecurity resilience across risk and compliance programs with agility and alignment. Customers communicate cybersecurity program posture, value, and return on security investment from a trusted single system of record that adds advanced automation to risk and compliance assessments and programs. Organizations across the Fortune 500 and high-growth startups alike are empowered to simplify even the most extensive continuous compliance and risk projects and achieve remarkable results.
For more information go to the CyberSaint website