On November 18, 2021, the Office of the Comptroller of the Currency (OCC), the Federal Deposit Insurance Corporation (FDIC), and the Board of Governors of the Federal Reserve System (FRB) (each, an “Agency” and, collectively, the “Agencies”) finalized a uniform regulation, codified at 12 C.F.R. Part 53, 12 C.F.R. Part 225.300 and 12 C.F.R. Part 304, with the stated purpose of improving the sharing of information about cybersecurity incidents harmful to the U.S. banking system (the “Regulation”). Pursuant to the Regulation, banks will be required to notify their primary federal regulatory Agency within thirty-six (36) hours of “any significant computer-security incident.”
Latest Post
More Posts
BSA/AML Update: Significant New Requirements Ahead
It’s Back: Paycheck Protection Program 2.0
OCC Proposal Would Bring Certainty to the Identity of the “True Lender”
UPDATE: U.S. House of Representatives Seeks to Amend the CARES Act to Provide Borrower’s Relief under the PPP
SBA Announces Procedure for PPP Lenders to Collect Loan Processing Fees
Paycheck Protection Program Loans May Be Excluded from a Bank’s Regulatory Capital Ratios
Temporary Regulatory Relief: Community Bank Leverage Ratio Set At 8%
Federal Reserve Suspends Regulatory Examination Activity for Banks with Total Consolidated Assets Under $100 Billion
Coronavirus Update: Strategies and Considerations for Financial Institutions
Subscribe: Subscribe via RSS