Hosted by the Financial Services Sector Coordinating Council, and the National Institute of Standards and Technology
Workshop participants will hear presentations and panels, as well as participate in group discussions to advance cybersecurity best practice and regulatory interactions in the Financial Services sector.
This workshop will offer participants the opportunity to:
The goal of this event is to:
This event will be valuable to:
Printable Agenda (PDF)
NIST – Cybersecurity Profile Risk Tiering Workshop
Version 4.0 (Distribution Draft)
8:30am-9:00am (30 min) |
Registration |
9:00am-9:20am (20 min) |
Introductions – Kevin Stine, Director of the NIST Applied Cybersecurity Division
NIST will introduce the topic, its work, and its work on further development of the NIST CSF. NIST will also discuss its support of sector specific efforts to tailor NIST CSF as has been done with the Financial Services Sector Cybersecurity Profile and with other parties. |
9:20am-9:40am (20 min) |
The Financial Services Sector Profile: An Overview and Purpose Statement for the Workshop
Learn about the development of the Financial Services Sector Cybersecurity Profile, its Diagnostic Statements, and the Risk Tiering Methodology, which will be the focus of the workshop. Also, learn about the next steps and issue areas that the sector will focus on following the workshop. |
9:40am-10:10am (30 min) |
The Need for Risk Tiering: A Primer on Purpose and Methodology
Financial Services firms vary in business offerings, interconnectedness, and complexity. The Risk Tiering Methodology, which is the focus of the workshop, has been drafted as a means to address those issues. |
10:10am-10:20am (10 min) |
Overview of Breakout Sessions |
10:20am-10:30am (10 min) |
Break |
10:30am-12:00pm (1.5 hrs) |
Breakout Session 1
|
12:00pm-1:30pm (1.5 hrs) |
Breakout Session 2
|
1:30pm-2:30pm (1.25 hr) |
Lunch – Ronald Reagan Food Court – Buy Your Own |
2:30pm-3:15pm (45 min) |
Read Out and Next Steps
Reconvene as a larger group to hear what was discussed, the direction provided, and potential next steps for NIST and the financial services sector. |