As bankers seek resources for how best to manage and mitigate risks associated with ransomware and other malicious code, don’t forget about the free resources offered by the Conference of State Bank Supervisors (CSBS) which include a ransomware self-assessment tool and resource guide.
The Ransomware Self-Assessment Tool (R-SAT) has 16 questions designed to help banks reduce the risks of ransomware. The Bankers Electronic Crimes Taskforce (BECTF), State Bank Regulators, and the United States Secret Service developed the tool. It was developed to help banks assess their efforts to mitigate risks associated with ransomware and identify gaps for increasing security. The tool provides executive management and the board of directors with an overview of the bank’s preparedness towards identifying, protecting, detecting, responding, and recovering from a ransomware attack.
The resource guide titled CSBS Executive Leadership of Cybersecurity (ELOC) Resource Guide, or “Cybersecurity 101,” is tailored to furnish executives with the necessary tools to better understand and prepare for the threats faced by their bank. The guide addresses challenges faced by both banks and nonbanks and is intended as an easily digestible, non-technical reference guide to help executives develop a comprehensive, responsive cybersecurity program in line with best practices. As each bank is different, the advice in the guide can be easily customized to meet each bank’s unique threats, priorities, and challenges. While the resource guide does not guarantee prevention, it attempts to identify various resources — people, processes, and tools and technologies — that, when properly leveraged, work to reduce a bank’s cybersecurity risk.
Best Practices for Banks: Reducing the Risk of Ransomware (Developed by the Bankers Electronic Crimes Task Force)