Federal Reserve System October 26, 2016 – Federal Register Recent Federal Regulation Documents

Change in Bank Control Notices; Acquisitions of Shares of a Bank or Bank Holding Company
Document Number: 2016-25892
Type: Notice
Date: 2016-10-26
Agency: Federal Reserve System, Agencies and Commissions
Formations of, Acquisitions by, and Mergers of Bank Holding Companies
Document Number: 2016-25891
Type: Notice
Date: 2016-10-26
Agency: Federal Reserve System, Agencies and Commissions
Enhanced Cyber Risk Management Standards
Document Number: 2016-25871
Type: Proposed Rule
Date: 2016-10-26
Agency: Federal Deposit Insurance Corporation, Agencies and Commissions, Federal Reserve System, Office of the Comptroller of the Currency, Department of Treasury, Department of the Treasury
The Board of Governors of the Federal Reserve System (Board), the Office of the Comptroller of the Currency (OCC), and the Federal Deposit Insurance Corporation (FDIC) (collectively, the agencies) are inviting comment on an advance notice of proposed rulemaking (ANPR) regarding enhanced cyber risk management standards (enhanced standards) for large and interconnected entities under their supervision and those entities' service providers. The agencies are considering establishing enhanced standards to increase the operational resilience of these entities and reduce the impact on the financial system in case of a cyber event experienced by one of these entities. The ANPR addresses five categories of cyber standards: Cyber risk governance; cyber risk management; internal dependency management; external dependency management; and incident response, cyber resilience, and situational awareness. The agencies are considering implementing the enhanced standards in a tiered manner, imposing more stringent standards on the systems of those entities that are critical to the functioning of the financial sector.