Comment deadlines approaching for NCUA, CISA, FHFA

Comments on several regulatory proposals affecting credit unions are due in the coming weeks, including to NCUA on records preservation, and the agency’s annual regulatory review:

June 3:

  • Cybersecurity and Infrastructure Agency (CISA) proposal to implement cyber incident and ransom payment reporting requirements adopted in the Cyber Incident Reporting for Critical Infrastructure Act of 2022. (CIRCIA). CIRCIA requires covered entities to report to CISA covered cyber incidents within 72 hours after the covered entity reasonably believes that the covered cyber incident has occurred and ransom payments made in response to a ransomware attack within 24 hours after the ransom payment has been made.
  • NCUA advance notice of proposed rulemaking on how the agency can improve and update its records preservation program regulations and guidance in Part 749. Comments can be sent to America’s Credit Unions by June 7.


continue reading »