News and Events

June 28, 2017

The NCCoE Financial Services Sector project team will present project updates and engage in discussion to identify adopters and new project ideas with the Investment Company Institute's CISO Subcommittee on June 28.

June 28, 2017

The NCCoE Financial Services Sector project team will meet with FINRA to provide NCCoE project updates and to discuss FINRA collaboration, adoption, and new project ideas.  

June 08, 2017

The NCCoE Financial Services Sector project team will meet with the FS-ISAC Community Institution Council Advisory Group, which includes leaders of the 3,000+ FS-ISAC member grou, to further collaboration between the two organizations.

April 30, 2017

The NCCoE Financial Services project team will attend the FS-ISAC Spring Summit in Orlando April, 30 - May 3. The team will host two tables during the Opening Breakfast on Tuesday, May 2 beginning at 7:00a.m. through the break at 9:45a.m. We invite you to join us at the table where you can meet the team and learn more about the work we're doing at the NCCoE. In addition, if you would like to meet with us individually, we're available for one-on-one meetings. RSVP for the breakfast table or schedule a meeting by emailing financial_nccoe@nist.gov

March 10, 2017

NCCoE cybersecurity engineers Jim Banoczi and Harry Perper will present "Managing Access and Assets for the Financial Services Industry" at the ISSA Mid-Atlantic Information Security Conference on March 10, 2017 at 9:40am at Universities at Shady Grove Conference Center in Rockville, Md. 

February 09, 2017

The National Cybersecurity Center of Excellence (NCCoE), a part of the National Institute for Standards and Technology (NIST), will demonstrate its current projects in San Francisco Feb. 13-17 at the RSA Conference and Orlando Feb 19-23 at the Healthcare Information and Management Systems Society Annual Conference & Exhibition (HIMSS17).

Individuals and organizations interested in learning more about the NCCoE’s work and how they can participate are encouraged to visit the booth and attend the presentations and demonstrations listed below.

RSA Conference: February 13-17, 2017

October 23, 2016

NCCoE senior engineers Jim Banoczi and Harry Perper will present a session titled "Practical Solutions for Managing Access and Assets" at the 2016 FS-ISAC Fall Summit in Nashville, TN. The session provides an overview of the NCCoE and describe two projects that were identified as significant challenges by FS-ISAC members. The first project outlines a practical solution for identifying and managing IT assets within an organization. The second project, Access Rights Management, addresses how to integrate diverse identity and access management platforms to better control access rights. These projects were initiated through discussions with FS-ISAC members and have broad applicability across the financial sector.

August 22, 2016

NCCoE Chief Engineer Harry Perper will participate in a panel discussion on Cybersecurity for the Financial Sector from 3:15pm-4:00pm at CyberTexas.

February 10, 2016

During his opening remarks, Dr. Willie May, Director of NIST, highlighted Splunk as one of six partners that renewed their commitment to NCCoE. Splunk’s commitment to the center includes providing the NCCoE with technical expertise, products, and outreach assistance. Splunk has committed to supporting NCCoE’s upcoming Financial Services Access Rights Management project with its operational intelligence software platform and technical expertise.

January 13, 2016

Splunk has been working with the National Cybersecurity Center of Excellence (NCCoE) at the National Institute of Standards and Technology (NIST) on an IT asset management system for the financial sector that uses commercially-available products.

The reference architecture, in which Splunk serves as the Operational Intelligence platform, can help financial institutions reduce their risk by enhancing the visibility of assets, identifying vulnerable assets and enabling faster response to security threats.

December 13, 2015

Bringing together officials from federal agencies, technology companies, commercial organizations and academia, enables us to create unified solutions to address broad cyber challenges of national importance. The National Institute of Standards and Technology’s (NIST) National Cybersecurity Center of Excellence (NCCoE), which acts as the country’s lab for cybersecurity, is an example of an organization that is continuously bringing together government and industry thought leaders to discuss and collaborate on applied cybersecurity matters.

December 09, 2015

Splunk, Inc., provider of the leading software platform for real-time Operational Intelligence, today announced that Splunk® Enterprise is featured in a guide to help financial institutions mitigate cybersecurity risk. The guide is published and written by the National Cybersecurity Center of Excellence (NCCoE) at the National Institute of Standards and Technology (NIST).

October 29, 2015

The U.S. NIST (National Institute of Standards and Technology) has released an IT security Practice Guide titled "IT Asset Management". Belarc has been working closely with the National Cybersecurity Center of Excellence (NCCoE) at the National Institute of Standards and Technology (NIST) on this cybersecurity project for financial institutions.

As the country's national lab for cybersecurity, the NCCoE brings together people from industry, technology companies, government agencies, and academia to collaborate on applied cybersecurity to address broad challenges of national importance.

October 28, 2015

AlphaPoint Technology, Inc. (OTCBB: APPO) today announced that over the last several months, AlphaPoint Technology has been working closely with the National Cybersecurity Center of Excellence (NCCoE) at the National Institute of Standards and...

October 27, 2015

Large financial institutions often have similar issues to federal agencies when it comes to IT, including keeping track of what is hosted on or connected to an organization's network.

The National Institute of Standards and Technology is trying to give those organizations a better way to tackle that problem, releasing a draft guide Tuesday that can help financial organizations manage their IT assets.

October 25, 2015

Financial institutions can employ large numbers of people who use a variety of technology devices and applications across a wide geographic area. While these physical assets can be labeled and tracked using bar codes and databases, knowing what systems and applications are running on these devices is a much larger challenge. The inability to track the location and configuration of networked devices and software can leave an organization vulnerable to security threats.

October 24, 2015

National Cybersecurity Center of Excellence deputy director Nate Lesser will be speaking on a panel at FS-ISAC Fall Summit 2015: Intelligence Into Action. The conference will be held from 10/25 – 10/28/15 at the Hotel del Coronado in San Diego, California.

Click here to find out more about the conference.

April 05, 2015

The National Cybersecurity Center of Excellence (NCCoE) is seeking collaborators on an effort to demonstrate an identity and access management system for financial services organizations. Current identity and access systems employed by the financial sector sometimes operate in isolation from one another, or cannot be integrated because the parts are incompatible. Operation is thus complex and prone to errors and inconsistencies can be exploited by attackers or insider threats. In addition, this situation makes it even more difficult for businesses to securely embrace new technologies such as mobile and cloud computing.

September 08, 2014

On Tuesday, August 26, 2014, representatives of seven companies with technologies for IT asset management visited NIST’s National Cybersecurity Center of Excellence. The meeting was the first step in forming a collaborative team to address the need for financial services organizations to protect their IT systems and data from cyber attacks.

May 05, 2014

The National Cybersecurity Center of Excellence (NCCoE) is seeking collaborators to provide products and technical expertise to create a model, standards-based system that companies in the financial services sector could use to integrate their existing asset management, hardware and software support and information technology security into a single comprehensive system.