• Banking Agencies Publish Information Security Compliance Guide
  • January 26, 2006 | Authors: Henry L. Judy; Melanie Hibbs Brody; Erin E. Troy
  • Law Firm: Kirkpatrick & Lockhart Preston Gates Ellis LLP - Washington Office
  • On December 14, 2005, the Banking Agencies issued the Small-Entity Compliance Guide ("Compliance Guide") for the Security Guidelines. The Compliance Guide summarizes the obligations of financial institutions to protect customer information, illustrates how certain provisions of the Security Guidelines apply to specific situations, and lists resources that may be helpful in assessing risks and designing and implementing information security programs. While the Compliance Guide is primarily a commentary on the Security Guidelines, it also serves as a partial digest of the enormous body of information security literature at the FFIEC InfoBase. In that regard it is intended to be especially helpful to smaller institutions, but, institutions of any size should find value in this primer because it distills a large and complex body of information to its essentials.