• RSA Archer Question Library Content

      The RSA Archer Question Library is a central repository for any assessment-based content that might be used to drive questionnaire generation or facilitate compliance assessments. Out-of-the-box the RSA Archer...
    Susan Read-Miller
    last modified by Susan Read-Miller
  • RSA Archer Policy Library Content

      The RSA Archer Policy Library includes a set of 19 best-practice policies developed by RSA Archer in cooperation with leading Fortune 1000 organizations and aligned with the International Organization for Stan...
    Susan Read-Miller
    last modified by Susan Read-Miller
  • RSA Archer Control Standards Library Content

      The RSA Archer Control Standards library consists of over 1,200 best-practice control standards organized through a custom GRC taxonomy developed specifically to align with multiple best-practice external stan...
    Susan Read-Miller
    last modified by Susan Read-Miller
  • Bank Secrecy Act Authoritative Source Content

    The Bank Secrecy Act of 1970, also known as the Currency and Foreign Transactions Reporting Act, an anti-money laundering law (AML), or as BSA/AML, is a law requiring financial institutions in the United States to ass...
    Susan Read-Miller
    last modified by Susan Read-Miller
  • California Consumer Privacy Act Authoritative Source Content

    The California Consumer Privacy Act was passed in June, 2018 and goes into effect on January 1, 2020.  This bill grants consumers the right to request businesses disclose the categories and specific pieces of per...
    Susan Read-Miller
    last modified by Susan Read-Miller
  • Chemical Facility Anti-Terrorism Standards Authoritative Source Content

    The Chemical Facility Anti-Terrorism Standards, updated in December 2018, provide information and guidance for reducing the risk posed by certain chemical facilities.   Languages This content is available in Engl...
    Susan Read-Miller
    last modified by Susan Read-Miller
  • Criminal Justice Information Services Security Policy Authoritative Source Content

    The Criminal Justice Information Services (CJIS) Security Policy, updated in August, 2018, provides appropriate controls to protect the full lifecycle of CJI, whether at rest or in transit. The CJIS Security Poli...
    Susan Read-Miller
    last modified by Susan Read-Miller
  • Federal Financial Institutions Examination Council (FFIEC) Booklets Authoritative Source Content

    The Federal Financial Institutions Examination Council (FFIEC) is a formal inter-agency body empowered to prescribe uniform principles, standards, and report forms for the federal examination of financial institu...
    Susan Read-Miller
    last modified by Susan Read-Miller
  • Canadian Office of the Superintendent of Financial Institutions (OSFI) Authoritative Source Content

    The Canadian Office of the Superintendent of Financial Institutions (OSFI) is an independent federal government agency that regulates and supervises more than 400 federally regulated financial institutions and 1,200 p...
    Susan Read-Miller
    last modified by Susan Read-Miller
  • Personal Information Protection and Electronic Documents Act (PIPEDA) Authoritative Source Content

    The Personal Information Protection and Electronic Documents Act (PIPEDA) was passed within Canada to promote electronic commerce and protect personal information in electronic format. The Act provides citizens with t...
    Susan Read-Miller
    last modified by Susan Read-Miller
  • U.S. Securities and Exchange Commission (SEC) Authoritative Source Content

    The U.S. Securities and Exchange Commission (SEC) is an independent, federal government agency responsible for protecting investors, maintaining fair and orderly functioning of securities markets, and facilitating cap...
    Christine Tran
    last modified by Susan Read-Miller
  • Reserve Bank of India (RBI) Data Feeds Content Integration

    The Reserve Bank of India (RBI) is India's central banking institution, which controls the monetary policy of the Indian rupee. It commenced its operations on 1 April 1935 in accordance with the Reserve Bank of India ...
    Susan Read-Miller
    last modified by Susan Read-Miller
  • North American Electric Reliability Corporation (NERC) Standards Authoritative Source Content

    The North American Electric Reliability Corporation is a nonprofit corporation which was formed by the electric utility industry to promote the reliability and adequacy of bulk power transmission in the electric utili...
    Susan Read-Miller
    last modified by Susan Read-Miller
  • F.T.C. CAN-SPAM Act of 2003 Authoritative Source Content

    The Federal Trade Commission (FTC) is an independent agency of the United States government, established in 1914 by the Federal Trade Commission Act. Its principal mission is the promotion of consumer protection and t...
    Susan Read-Miller
    last modified by Susan Read-Miller
  • F.T.C. Red Flags Rule Authoritative Source Content

    The Red Flags Rule was created by the Federal Trade Commission (FTC), along with other government agencies such as the National Credit Union Administration (NCUA), to help prevent identity theft.&#...
    Susan Read-Miller
    last modified by Susan Read-Miller
  • Monetary Authority of Singapore Authoritative Source Content

    The Monetary Authority of Singapore (MAS) guidelines provides two authoritative sources.   Technology Risk Management Guidelines (TRMG):  Internet banking systems and related online technologies have b...
    Susan Read-Miller
    last modified by Susan Read-Miller
  • U.S. Government Gramm-Leach-Bliley Act Authoritative Source Content

    The Gramm-Leach-Bliley Act requires financial institutions – companies that offer consumers financial products or services like loans, financial or investment advice, or insurance – to explain their inform...
    Christine Tran
    last modified by Susan Read-Miller
  • Financial Industry Regulatory Authority (FINRA) Rule Sets Authoritative Source Content

    As part of it's role as regulator of securities firms and brokers, FINRA enacts rules and publishes guidance to protect investors and promote market integrity.  FINRA Rules 2000-7000 cover various aspects regardi...
    Christine Tran
    last modified by Susan Read-Miller
  • National Institute of Standards and Technology Guidelines Authoritative Source Content

    The National Institute of Standards and Technology (NIST) is a part of the U.S. Department of Commerce. NIST's mission is to promote U.S. innovation and industrial competitiveness by advancing measurement science, sta...
    Susan Read-Miller
    last modified by Susan Read-Miller
  • Australian Government Information Security Manual (ISM) Authoritative Source Content

    The Australian Signals Directorate (ASD) produces the Australian Government Information Security Manual (ISM). The manual is the standard which governs the security of government ICT systems. It complements the P...
    Corey Carpenter
    last modified by Christine Tran