In June, the Federal Financial Institutions Examination Council (FFIEC) published a Cybersecurity Assessment Tool designed to help financial institutions identify risks and determine their cybersecurity preparedness. To complete the assessment, a financial institution first assesses its inherent risk profile based on five categories: technologies and connection types, delivery channels, online/mobile products and technology services, organization characteristics, and external threats. The financial institution then evaluates its cybersecurity maturity level for five different domains: cyber risk management and oversight, threat intelligence and collaboration, cybersecurity controls, external dependency management, and cyber incident management and resilience. The tool can be found here