The National Institute of Standards and Technology has published a new guide for companies interested in participating in cyber threat information sharing. The publication — a voluntary resource — offers guidelines for establishing the goals and scope of information sharing initiatives, identifying cyber threat information sources, controlling the publication and distribution of threat information and working within the existing sharing communities. The guidance is consistent with the Financial Services Information Sharing and Analysis Center’s practices for information sharing.
ABA offers fixes for small-business lending data collection rule
In a letter, ABA said it is pleased with the CFPB's proposal to revise its small-business lending data rule and offered several recommendations to reduce the compliance burden for banks.