Making the Switch: Understanding the Limitations of Outdated Telecom Solutions
Confronting the Limitations of Legacy Systems In the rapidly evolving realm of telecommunications, businesses are often constrained by outdated systems
Our hand-picked technology partners amplify our ability to architect and implement multi-vendor solutions, enabling seamless, secure, and efficient integration of cloud and next-generation networks into a single easy-to-manage solution.
Featured Partner
Gain invaluable customer insights to provide personalized experiences your customers want.
Enhance your data security and network connectivity with our trusted team of experts, available 24/7.
Move your manufacturing business forward with expert custom solutions and optimized applications.
Innovative solutions keep security, budget and enhanced experiences top of mind.
Seamlessly transition to most up-to-date technology while keeping your patients’ health data safe.
Confronting the Limitations of Legacy Systems In the rapidly evolving realm of telecommunications, businesses are often constrained by outdated systems
Top 10 Considerations When Choosing a NOCaaS Managed Services Provider Picking a NOCaaS (Network Operations Center as a Service)
The Rise of NOC as a Service and Its Crucial Role in Network Vigilance Organizations are struggling now more than
SALT LAKE CITY, September 1, 2023 — Today, Lightstream, a trailblazer in Secure Digital Transformation, Zero Trust security methodology, next-generation
With a looming recession and uncertainty growing, more organizations are looking for ways to cut spending and increase efficiencies. Many
In November of 2021, the Agencies, comprised of the Federal Deposit Insurance Corporation (FDIC), the Office of the Comptroller of the Currency (OCC), and the Federal Reserve Board (FRB), passed a regulation that requires banks to notify regulators no more than 36 hours after they identify that a security incident (that rises to the level of a “notification event”) has taken place. The regulation required full compliance by May 1, 2022. FDIC-supervised banks will report incidents to their case managers while banks that are regulated by the Board of Governors of the Federal Reserve System will need to inform the board. The Agencies explain though that not every data security incident is a notification event. According to the rule, a computer-security incident is “an occurrence that results in actual harm to the confidentiality, integrity, or availability of an information system or the information that the system processes, stores or transmits. An incident requiring subsequent notification is defined as a ‘computer-security incident’ that has disrupted or degraded a banking organization’s operations and its ability to deliver services to a material portion of its customer base and business lines”
Business Impact
While this requirement from the FDIC, OCC, and the FRB is new, most banks have already been using a 72-hour protocol for reporting. But with an even tighter timeline, banking corporations are going to have to ensure they’re reporting accurate information. Roger Grimes of KnowBe4 explains that in the rush to report quickly, more corporations will probably report inaccurately, which increases the liability risk. Banks will need to first identify if a notification event has taken place, and if they determine that’s the case, they have 36 hours from then to report.
Security Impact
Financial institutions are the backbone of the U.S. economy, according to Marcus Fowler, senior vice president of strategy engagements and threats at cybersecurity AI firm Darktrace, and are one of the most targeted sectors for cybersecurity threats. By establishing a tight window for breach reporting, banks can help restrict the scale of an attack and minimize the impact, protecting the “backbone” of our economy. Attackers try to harm as many victims as possible before defenders can address the issues, so the speed of reporting is vital in combating these cyber attacks.
Take Action
Recommendations
Lightstream recommends reviewing the new requirements and examining current policies and processes to ensure you’re compliant. Prioritize security by identifying what is a security incident and if that incident is a notification event. Use a comprehensive vulnerability management program to protect your banking corporation. We can help. Our full-stack vulnerability management programs keep you ahead of emerging threats and attackers.
Register for Lightstream Insights
©2024 Lightstream Managed Services, LLC. All Rights Reserved.