Welcome » IT Booklets » Information Security » Introduction » Coordination with GLBA Section 501(b)
Member agencies of the Federal Financial Institutions Examination Council (FFIEC) implemented section 501(b) of the Gramm-Leach-Bliley Act of 1999 (GLBA)See Appendix C for a listing of laws, regulations, and agency guidance. by defining a process-based approach to security in the "Interagency Guidelines Establishing Information Security Standards" (501(b) guidelines) . The 501(b) guidelines afford the FFIEC agenciesBoard of Governors of the Federal Reserve System (Federal Reserve Board), Federal Deposit Insurance Corporation (FDIC), National Credit Union Administration (NCUA), Office of the Comptroller of the Currency (OCC), and Office of Thrift Supervision (OTS). (agencies) enforcement options if financial institutions do not establish and maintain adequate information security programs. This booklet follows the same process-based approach, applies it to various aspects of the financial institution's operations and all related data, and serves as a supplement to the agencies' GLBA 501(b) expectations.