Banking and Finance Sector-Specific Plan - U.S. Department of ...
Banking and Finance Sector-Specific Plan - U.S. Department of ...
Banking and Finance Sector-Specific Plan - U.S. Department of ...
Create successful ePaper yourself
Turn your PDF publications into a flip-book with our unique Google optimized e-Paper software.
Figure 3-2: Dependent Relationships<br />
Any vulnerability assessment <strong>of</strong> the financial services sector cannot be truly final because the sector is evolving constantly.<br />
Thus, the FBIIC members continue to update assessments regularly to identify vulnerabilities <strong>and</strong> manage <strong>and</strong> assess asset risks,<br />
especially as the sector adopts new technology. Furthermore, the Treasury <strong>Department</strong> will work with DHS to coordinate how<br />
to normalize the results <strong>of</strong> the <strong>Banking</strong> <strong>and</strong> <strong>Finance</strong> <strong>Sector</strong>’s vulnerability assessments so that they may be comparable to the<br />
overall NIPP.<br />
3.5 Assessing Threats<br />
There have been individuals <strong>and</strong> groups that have attempted to exploit the sector for their own pecuniary gains. Over time, the<br />
sector has developed defenses to thwart these attacks. However, criminals <strong>and</strong> terrorists continue to devise new methods <strong>and</strong><br />
schemes. Therefore, the Treasury works with other Federal agencies, including the DHS Homel<strong>and</strong> Infrastructure Threat <strong>and</strong> Risk<br />
Analysis Center, on a daily basis to assess physical <strong>and</strong> cyber threats that are identified as specifically directed at the sector or at<br />
an asset on a national, regional, or local level. Relationships with DHS <strong>and</strong> other SSAs provide real-time information regarding<br />
these threats. Additionally, when threats are identified, frequent communications between the FBIIC <strong>and</strong> the FSSCC facilitate the<br />
efficient <strong>and</strong> effective transfer <strong>of</strong> potential threat information, permitting the sector to mitigate vulnerabilities.<br />
0 <strong>Banking</strong> <strong>and</strong> <strong>Finance</strong> <strong>Sector</strong>-<strong>Specific</strong> <strong>Plan</strong>