The FDIC, OCC, and Federal Reserve have issued a final rule on “Computer-Security Incident Notification Requirements for Banking Organizations and Their Bank Service Providers.” The new rule goes into effect on April 1, 2022. While certain incident notification requirements already exist for community banks, this new rule introduces additional requirements, including a time-to-report deadline, a new definition of what constitutes a “notification incident,” and new notification conditions for certain third parties.
On February 1, the Tandem team will be hosting a one-hour webinar designed to review the new rule. In the session, we will be answering questions, such as:
- What does the new rule say?
- How does the rule affect and/or supplement existing incident notification requirements?
- What changed from the proposed version of the rule to the final version?
- How can you meet the requirements of the rule for your bank and your third parties?
- What will be changing in Tandem?
Join us for this deep dive as we review the latest security incident notification requirements and discuss how you can be ready for them.