Categories: Office of the Comptroller of the Currency

Agencies Approve Final Rule Requiring Computer-Security Incident Notification

News Release 2021-119 | November 18, 2021

Joint Release

Board of Governors of the Federal Reserve System
Federal Deposit Insurance Corporation
Office of the Comptroller of the Currency

Federal bank regulatory agencies today announced the approval of a final rule to improve the sharing of information about cyber incidents that may affect the U.S. banking system. The final rule requires a banking organization to notify its primary federal regulator of any significant computer-security incident as soon as possible and no later than 36 hours after the banking organization determines that a cyber incident has occurred. Notification is required for incidents that have materially affected—or are reasonably likely to materially affect—the viability of a banking organization’s operations, its ability to deliver banking products and services, or the stability of the financial sector.

In addition, the final rule requires a bank service provider to notify affected banking organization customers as soon as possible when the provider determines that it has experienced a computer-security incident that has materially affected or is reasonably likely to materially affect banking organization customers for four or more hours.

Compliance with the final rule is required by May 1, 2022.

Related Link

Media Contacts

Federal Reserve
Darren Gersh
(202) 452-2955

FDIC
Julianne Breitbeil
(202) 340-2043

OCC
Stephanie Collins
(202) 649-6870

Related posts:

  1. Agencies Clarify Requirements for Providing Financial Services to Hemp-Related Businesses
  2. Acting Comptroller Discusses Modernizing the Financial Regulatory Perimeter
  3. OCC Clarifies Bank Authority to Engage in Certain Cryptocurrency Activities and Authority of OCC to Charter National Trust Banks
  4. OCC Announces Assessment Rates for Calendar Year 2022
IR Press

Leave a Comment
Share
Published by
IR Press
Tags: Bank Information Technology (BIT) Bank Operations Information & Cyber Security - BIT Laws & Regulations OCC Regulations
3 years ago

Recent Posts

OCC Announces Enforcement Actions for November 2024

WASHINGTON—The Office of the Comptroller of the Currency (OCC) today released enforcement actions taken against…

6 hours ago

U.S. Secretary of the Treasury Janet L. Yellen to Announce $76 Million in Funding for Community Lenders as Part of 30th Anniversary Celebration of the Community Development Financial Institutions Fund

WASHINGTON – Today, as part of the 30th anniversary celebration of the Community Development Financial…

22 hours ago

Treasury Sanctions Gazprombank and Takes Additional Steps to Curtail Russia’s Use of the International Financial System

Treasury imposes sanctions on dozens of Russian banks, securities registrars, and finance officials; OFAC issues…

22 hours ago

Acting Comptroller Testifies on State of the Federal Banking System

WASHINGTON—Acting Comptroller Michael J. Hsu today testified on the state of the federal banking system…

1 day ago

Remarks by Assistant Secretary for International Finance Brent Neiman on the U.S. Cross-Border Payments Agenda

As Prepared for Delivery Thank you very much for the opportunity to be here today, and…

3 days ago

Remarks by Assistant Secretary for Investment Security Paul Rosen at the Third Annual CFIUS Conference

As Prepared for Delivery Good afternoon.  I’d like to start by thanking our panelists today for…

3 days ago