Federal Deposit Insurance Corp. has issued a new publication that leads some banking and security experts to believe no new guidance is forthcoming. Bankers have been critical of examiners’ use of the FFIEC’s Cybersecurity Assessment Tool. Experts say examiners likely will continue to use the tool, even though its use is supposedly voluntary. The FDIC’s Supervisory Insights suggests banks should rely more heavily on the National Institute of Standards and Technology Cybersecurity Framework. An effective information security program is not static and should be regularly evaluated and updated.”]
Source: https://www.govinfosecurity.com/should-banks-expect-new-cybersecurity-guidance-a-8865