Committees

FS-ISAC councils, committees and working groups are composed of representatives from the membership who meet regularly to provide strategic guidance, industry context and subject matter expertise. These special interest groups use mail lists to share information such as mitigation techniques, best practices and threat information with each other.

Most special interest groups are open to core, standard, premier, gold and platinum members unless specifically designated. As a member, we encourage you to be active and involved in relevant committees. To request an invitation to a council, committee or working group meeting, please email us.

AP Anti-Fraud and Cybercrime Working Group (AFCC)

AP Insider Threat Working Group

AP Threat Intelligence Automation Working Group (ATIAWG)

AP Regional Strategy Committee (AP-RSC)

AP Regional Threat Intelligence Committee (AP-RTIC)

Australia and New Zealand (AUNZ) Education Outreach Working Group

Business Resiliency Committee (BRC)

Canadian Financial Services Council (CFSC)

Clearing House and Exchange Forum (CHEF)

Cloud Security Working Group (CSWG)

Community Institution and Associations Council (CIAC)

Compliance and Audit Council (CAC)

Data Aggregation Working Group

Data Analytics Working Group (DAWG)

Education Committee

EMEA Business Resiliency Committee (EMEA-BRC)

EMEA Regional Strategy Committee (EMEA-RSC)

EMEA Regional Threat Intelligence Committee (EMEA-RTIC)

Insider Threat Working Group (ITWG)

Insurance Risk Council (IRC)

International Insurance Sharing Group (ISG)

Intel Sharing Community Participation Maturity Working Group (ISCPM)

Media Response Team (MRT)

Mortgage Risk Council (MRC)

Patch Management Working Group (PMWG)

Payments Processor Information Sharing Council (PPISC)

Payments Risk Council (PRC)

Product and Services Review Committee (P&SC)

Security Automation Work Group (SAWG) 

Securities Industry Risk Group (SIRG)

EMEA Securities Industry Risk Group (SIRG-EMEA)

Survey Committee (SC)

Americas Threat Intelligence Committee (TIC)

Treasury Threat Analysis Forum (TTAF)


AP Anti-Fraud and Cybercrime Working Group (AFCC)
Develops solutions, contact resources and support material to enhance members’ maturity and capability in preventing and investigating fraud and cybercrime in the Asia-Pacific region.

AP Insider Threat Working Group
Develops and shares techniques and materials to help prevent, identify, respond to and analyze risks and threats from insider activity.

AP Threat Intelligence Automation Working Group (ATIAWG)
Discusses challenges and exchange resources and experiences around threat intelligence automation.

AP Regional Strategy Committee (AP-RSC)
Represents the interests of its members in FS-ISAC governance and strategy related issues and acts as a regional steering group for our Asia-Pacific membership.

AP Regional Threat Intelligence Committee(AP-RTIC)
Facilitating the FS-ISAC’s information sharing mission through planning and direction, collection, and dissemination of regional cyberthreat intelligence for the financial services sector.

Australia and New Zealand (AUNZ) Education Outreach Working Group
Strengthening the pipeline of information security talent entering the AUNZ financial services sector. The group will aim to identify collective measures that can be engaged to improve outcomes in this critical area of dependence.

Business Resiliency Committee (BRC)
Maximizes the use of the FS-ISAC personnel and services to deliver business continuity, disaster response and physical security services that are of value to its members.

Canadian Financial Services Council (CFSC)
Addresses topics, challenges and opportunities specific to the Canadian domestic financial sector and pertaining to various operational risk issues including information security, resiliency, regulatory, fraud, physical security and privacy.

Clearing House and Exchange Forum (CHEF)
Brings clearing houses and exchanges together to aggregate shared data and develop trusted information sharing platforms for peer firms to reduce the risk of successful attacks.

Cloud Security Working Group (CSWG)
Shares insights with one another on cloud security. The CSWG focuses on deliverables to help the FS-ISAC members with decisions related to cloud security for the financial sector.

Community Institution and Associations Council (CIAC)
The single largest community within the FS-ISAC, providing credit unions and commercial banks (under $20 billion USD in assets) a network to share a wide range of pertinent information with a community institution (CI) focus. View CIAC one-pager.

Community Bank Council (CBC)
Regardless of an institutions size, malicious actors are constantly searching for vulnerabilities to exploit. The stakes have never been higher based on the financial and regulatory implications. Sharing information enables these CBs to prevent an incident before it’s a disaster.

Credit Union Council (CUC)
Credit unions (CU) play a critical role in their communities and have unique needs that the FS-ISAC strives to meet. Given the small size of thousands of credit unions and constant challenges in complying with regulatory requirements, the FS-ISAC established in late 2016 a new Credit Union Council (CUC). View the CU one-pager.

Compliance and Audit Council (CAC)
Shares information on industry best practices, discusses the latest regulatory developments and works to find out how peer organizations are handling the latest compliance, audit, legal and control issues.

Data Aggregation Working Group
Enables dialog among members expressing interest in account aggregation and its impact on Information Security leadership.

Data Analytics Working Group (DAWG)
The DAWG provides a forum for FS-ISAC members to share experiences related to applying Big Data technologies to solving information security challenges

Education Committee
The Education Committee is a working group advising the education efforts of FS-ISAC. Members will work to develop the training capabilities of the organization. Training includes formal classes, development of the FS-ISAC Learning Academy, webinars, and more.

EMEA Business Resiliency Committee (EMEA-BRC)

EMEA Regional Strategy Committee (EMEA-RSC)
Represents the interests of its members in FS-ISAC governance and strategy related issues and acts as a regional steering group for our EMEA membership.

EMEA Regional Threat Intelligence Committee (EMEA-RTIC)
Represents the interests of its members in FS-ISAC governance and strategy related issues and acts as a regional steering group for our EMEA membership.

Insider Threat Working Group (ITWG)
Approaches the insider threat programmatically, identifying best practices for management. The group also helps facilitate in-person meetings and calls, as well as deals with issues specific to the region.

Insurance Risk Council (IRC)
Addresses topics, challenges and opportunities specific to the insurance sector and pertaining to various operational risk issues including information security, resiliency, regulatory, fraud, physical security and privacy.

International Insurance Sharing Group (ISG)
Created as a sharing mechanism targeted to security operations and threat analyst personnel that work in the insurance sector.

Intel Sharing Community Participation Maturity Working Group (ISCPM)
Developing a benchmarking model for FS-ISAC members to measure their engagement in, and value from, participation in FS-ISAC community and services.

Media Response Team (MRT)
Monitors press, media and social media activity related to cyber-issues and incidents specific to our sector. The team also reviews FS-ISAC messaging points that are utilized in response to media inquiries.

Mortgage Risk Council (MRC)
Provides an information sharing forum for members in the business of servicing, issuing, or processing mortgages.

Patch Management Working Group (PMWG)
Approaches information security through patching systems as a preventive control.

Payments Processor Information Sharing Council (PPISC)
Brings together stakeholders in the payments field to develop solutions, identify best practices and facilitate the exchange of information resulting in a more efficient and secure use of electronic payments and related practices.

Payments Risk Council (PPISC)
Shares information on current threats and payment risk mitigation for ACH, wire and check payments.

Product and Services Review Committee (P&SC)
Coordinates and organizes member driven working groups to identify and improve industrywide practices for the membership, including cross-sector initiatives.

Security Automation Work Group (SAWG)
Learn more about the SAWG Cyber Intelligence Repository.

Github Group
This group was started to exchange scripts to work with Avalanche or facilitate automation, but with the new addition of the Soltra community, there are additional steps that can be automated in terms of internal analytics to generate data for STIX and Soltra.

Securities Industry Risk Group (SIRG)
Comprised of FS-ISAC members that have an involvement in the securities industry and council chairperson(s) of councils within the SIRG. View the SIRG one-pager.

Alternative Investors Council (AIC)
Provides an information sharing forum for FS-ISAC member firms in the alternative investment industry: hedge funds, private equity and venture capital firms.

Asset Manager Council (AMC)
Created to provide a forum for asset managers to share information related to cybersecurity and intelligence.

Broker Dealer Council (BDC)
Created to provide a forum for, and to assist, FS-ISAC members who have an involvement in the broker-dealer community to share information related to solving information security challenges.

Retirement Industry Council (RIC)
Created to provide a forum for, and to assist firms involved in the $28 trillion retirement investment community in the United States and abroad.

EMEA Securities Industry Risk Group (SIRG-EMEA)
Created to provide an information sharing forum for FS-ISAC members in the Securities/Investment industry whose offices are based in the EMEA region and who want to share information with other members in the region.

Survey Committee (SC)
Supports the FS-ISAC survey process, which provides FS-ISAC members with the opportunity to anonymously survey the financial services community on relevant topics in a timely manner.

Americas Threat Intelligence Committee (TIC)
Facilitating the FS-ISAC's information sharing mission through the planning, coordination, collection, processing, and dissemination of cyber threat intelligence for the financial services sector.

Treasury Threat Analysis Forum (TTAF)
Facilitates the sharing of information on current trends and emerging threats related to online and mobile fraud and authentication specifically related to wholesale/treasury (typically defined as mid/large corporate customers such as Amazon, Walmart, etc.).