609.930(a)—609.930(a)
>Control Description
Each System institution must implement a comprehensive, written cyber risk management program consistent with the size, risk profile, and complexity of the institution's operations. The program must ensure controls exist to protect the security and confidentiality of current, former, and potential customer and employee information, protect against reasonably anticipated cyber threats or hazards to the security or integrity of such information, and protect against unauthorized access to or use of such information.
>Cross-Framework Mappings
SCF
GOV-01
CompareGOV-08
CompareGOV-09
CompareGOV-15
CompareGOV-15.1
CompareGOV-15.2
CompareGOV-15.3
CompareGOV-15.4
CompareGOV-15.5
CompareDCH-01
CompareRSK-01
CompareRSK-01.1
CompareRSK-01.2
CompareRSK-01.3
CompareRSK-01.4
CompareRSK-01.5
CompareRSK-03
CompareRSK-03.1
CompareRSK-04
CompareRSK-04.1
CompareRSK-05
CompareRSK-06
CompareRSK-06.1
CompareRSK-06.2
CompareAsk AI
Configure your API key to use AI features.