Statutes, codes, and regulations
Code of Federal Regulations
Title 12 - BANKS AND BANKINGChapter VI - FARM CREDIT ADMINISTRATIONSubchapter B - FARM CREDIT SYSTEMPart 609 - [Effective 1/1/2025] CYBER RISK MANAGEMENT
Subpart A - [Effective 1/1/2025] GENERAL RULES
Section 609.905 - [Effective 1/1/2025] In general

12 C.F.R. § 609.905

Download
PDF
Current through September 30, 2024
Section 609.905 - [Effective 1/1/2025] In general

Farm Credit System (System) institutions must engage in appropriate risk management practices to ensure safety and soundness of their operations. A System institution's board and management must maintain and document effective policies, procedures, and controls to mitigate cyber risks. This includes establishing an appropriate vulnerability management program to monitor cyber threats, mitigate any known vulnerabilities, and establish appropriate reporting mechanisms to the institution's board and the Farm Credit Administration (FCA). The vulnerability management programs should be commensurate with the size, risk profile, and complexity of the institution and based on sound industry standards and practices.

12 C.F.R. §609.905

88 FR 85832, 1/1/2025