Information Security Resource Center
The financial services sector, including the mutual fund industry, plays a vital role in protecting the nation’s critical infrastructure against cyber attacks and other threats. This includes proactively identifying threats and promoting sound practices that benefit consumers and investors.
ICI members strive to secure their networks and data, identify threats and risks, and evaluate the effectiveness of the information security programs of third-party business partners every day. Despite this, these threats continue to evolve and increase in intensity and complexity.
The evaluation and management of cyber risk is an ongoing and evolving effort that requires the appropriate prioritization and allocation of firm resources—and executive support. Though practices will vary by firm, cyber risk management is not solely an IT challenge. Instead, it encompasses business, technology, and corporate support functions, as well as industry infrastructure.
To support members’ efforts in this challenging and complex environment, ICI has developed resources to help firms with their cybersecurity risk management programs. These reference tools include:
- Standards and Guidelines
- Information Sharing Resources
- Information Security Threat Mitigation & Program Development
- What to Ask When Assessing Information Security Programs
- Other Resources
These resources are not intended to be all-inclusive, nor are they intended to replace existing information security risk management processes. Rather, we make them available to help firms evaluate and manage enterprise-wide cybersecurity risks for their organization.