top of page

Does your bank have the right level of maturity for your Cybersecurity Risk Management activities compared to the inherent risk levels?


The FFIEC Cybersecurity Assessment Tool (CAT) is a diagnostic testing tool that helps internal auditors identify a bank's level of inherent risk and determine the maturity level of their cybersecurity programs.


This training course looks at the way cybersecurity inherent risks can vary significantly based on a financial institution's activities. It is imperative for a bank's internal audit function to evaluate and analyze the financial institution's inherent risk levels to cybersecurity threats and vulnerabilities. The FFIEC CAT, which is the basis for this training event, provides a method for measuring a bank's inherent risk levels across several categories. The FFIEC Cybersecurity Assessment Tool focuses on five  categories of inherent risks; including delivery channels, connection types, external threats, and organizational characteristics.


This comprehensive training course is for anyone who wants to have a strong base of knowledge and understanding of the FFIEC Cybersecurity Assessment Tool and its use within a banking institution.


This timely, 16 hour CPE bank training course is designed for the project director, project leader and individuals who have to create an effective cybersecurity assessment within their internal audit activities.


This internal control training course will provide each attendee with 16 CPE Event Hours (YB). A certificate of completion will be awarded.


CCS also has professional staff that can assist your organization in doing a Cybersecurity Assessment Report. This link will take you to an example of our diligent inquiry work creating a cybersecurity assessment report for internal usage by a major insurance organization.

FFIEC Cybersecurity Assessment Tool - In-Person

  • The sessions will be as follows:

    Tuesday – 9:00 a.m. to 5:00 p.m.

    Wednesday - 9:00 a.m. to 5:00 p.m.

    We can schedule private virtual events on your timetable for three or more attendees.

    NASBA Program Disclosure

    Program Level of Understanding: Intermediate

    Prerequisites: None

    Advance Preparation: Review Cybersecurity Assessment Tool

    Delivery Format: Group Internet Based

    NASBA Field(s) of Study: Auditing, Business Management & Organization, Information Technology

    CPE Credits: 16, based on 50 minutes of instruction per hour

In the event you haven't seen an email from confirming your registration land in your inbox, there's a chance it might have taken a little detour into your spam, junk, or quarantine folder. If you could take a moment to peek in there and kindly mark it as "not spam" or “not junk,” that would be fantastic. On the off chance that your firewall is being a bit overprotective and preventing the email from even reaching your spam folder, please don’t hesitate to give me a ring at 479-200-4373. I’m here to ensure everything’s set straight for you.

bottom of page