← Return to Blog

29 Sep, 2023

Regulatory Bulletin September 29, 2023

FDIC InTREx Update

On September 29, 2023, the FDIC released a Financial Institution Letter announcing updates to the Information Technology Risk Examination (InTREx). This update aims to “improve the Audit module‘s usability, specify compliance review steps relative to the Computer Security Incident Notification Rule (Part 304 Subpart C), provide more specificity regarding examiner review of service provider reports of examination, and update links to references.” 

BankOnIT has examined the modifications made to the InTREx and noted that these changes mainly pertain to adjustments in how examiners conduct their assessments. These alterations also involve updates to terminology to include the newly created Computer Security Incident Notification Rule and some superficial adjustments to the overall procedure.

Regulators are looking for institutions to review their service provider's TSP exam reports. As a result, institutions should check to make sure requests for those reports are regularly being driven by someone in their institution. In addition, with the inclusion of the Computer Security Incident Notification Rule, we recommend that our clients review the modifications to ensure an established and approved policy is in place. 

Have questions? Contact us at insights@bankonitusa.com.

--

Links:
Financial Institution Letter - Information Technology Risk Examination (InTREx) Procedures
Financial Institution Letter - Computer-Security Incident Notification

← Return to Blog

Disclaimer

This publication attempts to provide timely and accurate information concerning the subjects discussed. It is furnished with the understanding that it does not provide legal or other professional services. If legal or other expert assistance is required, the services of a qualified professional should be obtained.

Related Posts

Information Security Brief - October 2024

Cyber Security Awareness Month In 2004, the President of the United States and Congress declared October Cyber Security ...

Read more

CEO Update - Q4 2024

Donald Rumsfeld, Secretary of Defense of the United States of America, 1975-1977 and 2001-2006, is famous for saying, “T...

Read more

Information Security Brief - September 2024

Login Here Login There; Login Everywhere Whether you’re at work, at home, or traveling, websites and applications consta...

Read more