RiskWatch and InfoSight announced today that they have reached an agreement to offer RiskWatch for Financial Institutions software to financial institutions nationwide to assist them in meeting the new FFIEC regulatory requirements for self- assessments.
RiskWatch recently released a new updated version of RiskWatch for Financial Institutions software which allows organizations to do a self- assessment against the FFIEC (Federal Financial Institutions Examination Council) guidelines. The software also assists organizations in self-assessment measuring compliance with standards such as the FFIEC IT Framework, the Gramm-Leach Bliley Act (GLBA), ISO 17799-2005 and 27001, the Bank Secrecy Act (BSA), and the PCI (Payment Card Industry) and Sarbanes-Oxley standards.
"RiskWatch software successfully meets the FFIEC standards for completing an IT risk assessment. InfoSight is very pleased to enter into this partnership. It provides an opportunity for our clients to regularly assess their network vulnerabilities making certain they are not only complying with regulations, but that our clients have a valuable tool for the ongoing liability of securing of their networks," commented Tom Garcia, President of InfoSight Consulting.
Bank regulators are asking banks for a full information security risk assessment, including the analysis of the matrix between threats and vulnerabilities, as well as cost-benefit analysis and return-on-investment detail.