Computer-Security Incident Notification Requirements for Banking Organizations and Their Bank Service Providers

January 12, 2021 FDIC, OCC, Regulation lookup, The Fed 0

Title:	Computer-Security Incident Notification Requirements for Banking Organizations and Their Bank Service Providers
Subject:	Notification incident
Agency:	FDIC, Federal Reserve, OCC
Status:	Proposed rule
Summary:	The OCC, Board, and FDIC (together, the agencies) invite comment on a notice of proposed rulemaking (proposed rule or proposal) that would require a banking organization to provide its primary federal regulator with prompt notification of any “computer-security incident” that rises to the level of a “notification incident.” The proposed rule would require such notification upon the occurrence of a notification incident as soon as possible and no later than 36 hours after the banking organization believes in good faith that the incident occurred. This notification requirement is intended to serve as an early alert to a banking organization’s primary federal regulator and is not intended to provide an assessment of the incident. Moreover, a bank service provider would be required to notify at least two individuals at affected banking organization customers immediately after the bank service provider experiences a computer-security incident that it believes in good faith could disrupt, degrade, or impair services provided for four or more hours.
FR Doc:	2020-28498
Date proposed:	Dec. 18, 2020
Comments due date:	April 12, 2021
Effective date:
Rule compliance date:
Agency release:
Related Reg Report item(s):	Banking agencies jointly release proposal on ‘alerts’ required from banks when computer security impinged

Cross-border resolution planning topic for U.S., European regulators with eye toward GSIBs

April 16, 2024 0

A coordination exercise of cross-border resolution planning among regulators and supervisors from the U.S., the United Kingdom (UK) and the European Banking Union (EBU) is set for Saturday, the federal bank deposit insurance agency said Tuesday. The conference, the Federal [...]
Final, procedural rule aims to streamline process for designations of nonbanks

April 16, 2024 0

Procedures for designating a nonbank for supervision by the federal consumer financial protection agency were updated Tuesday, the agency said, and will streamline the process for both it and the nonbanks. The Consumer Financial Protection Bureau (CFPB) said the final, [...]
FDIC panel on community banking meets May 2

April 16, 2024 0

The federal bank deposit insurer’s Advisory Committee on Community Banking is set to meet publicly May 2 on issues of interest to community banks, according to a notice in Tuesday’s Federal Register. The Federal Deposit Insurance Corp. (FDIC) notice says [...]
CFPB’s community bank panel to meet April 30

April 16, 2024 0

A public meeting of its Community Bank Advisory Council (CBAC) is slated for April 30 from 1-3:30 p.m. Eastern, the Consumer Financial Protection Bureau (CFPB) said in a notice posted online and in Tuesday’s Federal Register. The bureau said the [...]
Rising use of fraud related to counterfeit passport cards impels notice to banks to be on alert

April 15, 2024 0

Fraud schemes related to the use of counterfeit U.S. passport cards has prompted a notice to financial institutions from the Treasury’s financial crimes enforcement unit, the agency said in a notice issued Monday. According to the Financial Crimes Enforcement Network [...]
Credit union regulator looking at proposed rule on records preservation

April 12, 2024 0

Records preservation under an advanced notice of proposed rulemaking is on the agenda for the April 18 meeting of the federal credit union regulator’s board, the agency said in a meeting notice posted late Thursday. No other items are listed [...]

Related