The FRB, FDIC, and OCC jointly issued an advance notice of proposed rulemaking on “enhanced cyber risk management standards” for large banks and their affiliates [full text]. Among other things, the rule would mandate that all covered entities develop a cyber risk management framework for their businesses.
