Cyber & IT Supervisory Forum - November 2023

The Role of Examiners in Evolving Cybersecurity

Examiners as Strategic Partners

•Collaborative Guidance: Examiners collaborate with financial institutions to enhance cybersecurity strategies. •Insightful Evaluation: Provide key insights into security posture and risk management practices. •Holistic Approach: Examiners bring a holistic view to cybersecurity efforts, ensuring that all angles are covered.

Role in Identifying & Advising on Cybersecurity

•Risk Identification: Examiners play a critical role in identifying potential cybersecurity risks and vulnerabilities within an organization. •Actionable Advice: Examiners provide actionable advice to help institutions prioritize and mitigate identified risks. •Continuous Improvement: Examiners advocate for continuous improvement and adaptation of cybersecurity measures in response to evolving threats.

9

Collaborative Resilience

Building Collaborative Resilience Across Teams

Unified Cybersecurity Frameworks: Advocate for adopting frameworks like NIST, which facilitate a shared understanding and approach to managing cyber risk across different organizational units.

Cyber Range vs Tabletop : Discuss how quarterly cybersecurity range trips involving multiple stakeholders has enhanced organizational resilience and response coordination. Alternatively, discuss ways to enhance tabletop exercises – it’s about building muscle memory and testing plans.

Industry Coalitions: Recommend engaging with industry coalitions such as InfraGard or DSAC, CISA, FS-ISAC, MS-ISAC, and others who have been pivotal in collaborative defense, sharing critical threat data among members.

Cybersecurity is a collective responsibility.

10