Cyber IT Supervisory Forum eBook

Internal Use Only

U.S. Treasury – OFAC Sanctions

 Treasury leverages sanctions authorities to disrupt the networks of threat actors targeting the financial sector  Information from Project Fortress programs can provide additional context and support to drive sanctions against bad actors  Treasury’s Office of Foreign Assets Control (OFAC) has recently sanctioned Russian and Iranian malicious cyber actors with success

3

October xx, 2022

Internal Use Only

U.S. Treasury – Automated Threat Information Feed

 Public-private information sharing program that provides financial institutions with access to a tailored cyber threat feed  Aggregates indicators from Treasury, other U.S. Government entities, international partners, and participating financial institutions  Financial institutions can voluntarily contribute data to the feed or use it for information on potential threats targeting the sector  Available through Cloudflare, MISP, or via TAXII integration for use across an array of security products

4

October xx, 2022