Rule requires banks report significant ‘computer-security incidents’ within 36 hours
By 
Aaron Nicodemus2021-11-19T21:15:00
Federal banking regulators issued a rule that requires financial institutions to notify their regulator within 36 hours of a “computer-security incident” that materially affects their operation, ability to deliver services, or the stability of the financial sector.
THIS IS MEMBERS-ONLY CONTENT
You are not logged in and do not have access to members-only content.
If you are already a registered user or a member, SIGN IN now.
Related articles
-
ArticleFINRA notice outlines key areas for supervising third parties
The Financial Industry Regulatory Authority issued a notice on compliance deficiencies arising from firms’ relationships with vendors culled from examination findings.
-
ArticleTakeaways from NYDFS ransomware guidance
The New York State Department of Financial Services has issued guidance for regulated entities describing best practices for reducing the risk of a ransomware attack.
-
ArticleNYDFS regulation a best-practices model for cyber-security training
Companies must make cyber-security a continuous priority as threats evolve, often more quickly than the technology and regulations to counter them. That’s why the New York Department of Financial Services, under Maria Vullo, developed a policy that should act as a model for organizations.
More from Regulatory Policy
-
ArticleU.K. listed companies must adapt to new sustainability reporting regime by 2027
Sustainability reporting rules for U.K. listed companies are set to change. The U.K. financial regulator has launched a consultation laying out its proposals, which aim to align the reporting regime with the international ISSB standards.
-
ArticleU.K. ‘buy now pay later’ regulation signals end of ‘Wild West’ fintech loans system
Firms offering “buy now, pay later” financing will become part of the regulated financial services sector in the U.K. from July 15. Compliance teams must act now to ensure they are ready to introduce rules and establish creditworthiness assessment processes, adapt systems, and change data processes before the deadline.
-
ArticleNew EU rules will force companies to come clean on pay
New rules that will be introduced this June will require companies based in the European Union (EU) to explain why some workers are paid more money for the same job and remedy any “unjustified” discrepancies.