The Federal Financial Institutions Examination Council (FFIEC) requires financial institutions and their service providers to maintain effective security compliance management programs which provide availability of systems, confidentiality of data or systems, accountability and assurance. Federal Financial Institutions Examination Council (FFIEC) standards call for financial institutions to collect, retain and review logs and audit trails in such security and control areas as user access rights administration, firewall policy, and remote access.
The IT Handbook describes security controls implementation. EventTracker offers comprehensive features to satisfy these requirements.
Title X of the Dodd-Frank Wall Street Reform and Consumer Protection Act of 2010 established the Consumer Financial Protection Bureau (CFPB) and authorizes it to supervise certain consumer financial services companies and large depository institutions and their affiliates for consumer protection purposes. The CFPB has been charged with the implementation of, examination for compliance with and enforcement of Federal consumer finance law.
CFPB compliance is focused on the consumer Examiners will review any practice that could be deemed to be unfair and deceptive if it is not clear to the consumer or could be construed as confusing to the consumer. From an IT standpoint, CFPB compliance is comparable to the practices described by the IT Handbook provided by the FFIEC.
See a complete FFIEC/CFPB Solution Brief