Rule requires banks report significant ‘computer-security incidents’ within 36 hours
By 
Aaron Nicodemus2021-11-19T21:15:00
Federal banking regulators issued a rule that requires financial institutions to notify their regulator within 36 hours of a “computer-security incident” that materially affects their operation, ability to deliver services, or the stability of the financial sector.
Related articles
-
ArticleFINRA notice outlines key areas for supervising third parties
The Financial Industry Regulatory Authority issued a notice on compliance deficiencies arising from firms’ relationships with vendors culled from examination findings.
-
ArticleTakeaways from NYDFS ransomware guidance
The New York State Department of Financial Services has issued guidance for regulated entities describing best practices for reducing the risk of a ransomware attack.
-
ArticleNYDFS regulation a best-practices model for cyber-security training
Companies must make cyber-security a continuous priority as threats evolve, often more quickly than the technology and regulations to counter them. That’s why the New York Department of Financial Services, under Maria Vullo, developed a policy that should act as a model for organizations.
More from Regulatory Policy
-
ArticleU.K. updates pension and asset manager rules, but internal auditors flag governance gaps
Will “taking an axe to” red tape and onerous reporting commitments free up trillions invested in U.K. pensions and increase the value of assets managed by regulated financial services firms?
-
News BriefU.S. Labor Department advances sweeping deregulation push targeting worker protections
The U.S. Department of Labor (DOL) appears to be in the process of deregulating work rules. Some of the changes proposed would result in a reduction of pay for certain health workers and allow minors to work hazardous jobs.
-
News BriefAtkins says SEC to embrace innovation, criticizes regulatory uncertainty around tokenization
SEC Chair Paul Atkins pointed to the growth of tokenized shares as a key development reshaping private markets, suggesting the agency is preparing to update its rules to keep pace with new forms of digital asset trading and settlement.