Sindhu Ajay reports:
The US Office of the Comptroller of the Currency, the Federal Reserve Board, and the Federal Deposit Insurance Corporation Friday proposed a new computer-security incident notification requirement for banking organizations and their bank service providers.
The proposed rule would require a banking organization to provide its primary federal regulator a prompt notification of any “computer-security incident” no later than 36 hours after it believes the incident occurred.
Read more on JURIST.