The Security and Exchange Commission (SEC) Office of Compliance Inspections and Examinations (OCIE) recently released findings from their examinations of the approaches taken by organizations to manage and combat cyber risk and to build operational resiliency. In their report, Cybersecurity and Resiliency Observations, the OCIE offers guidance to financial firms on improving cybersecurity in a variety of areas, such as:
- Governance and Risk Management
- Access Rights and Controls
- Data Loss Prevention
- Mobile Security
- Incident Response and resiliency
- Vendor Management
- Training and Awareness
The OCIE’s report includes both logical and actionable cybersecurity observations, all of which require a fundamental and comprehensive asset management practice. In our industry response paper, we summarize the OCIE’s report and explore the role cybersecurity asset management plays in each of their key observations.
Fill out the form to download this paper and learn more about the role of cybersecurity asset management in the finance industry.