Revisions to Operating Circular 5 - Circulars - FEDERAL RESERVE BANK of NEW YORK

Museum & Visits Regional Economy Data & Statistics Careers Blog Press Center

About the New York Fed
- About the New York Fed
- What We Do
- Who We Are
  - Bank Leadership
  - Diversity and Inclusion
- Communities We Serve
- Governance
- More About Us
- At the New York Fed, our mission is to make the U.S. economy stronger and the financial system more stable for all segments of society. We do this by executing monetary policy, providing financial services, supervising banks and conducting research and providing expertise on issues that impact the nation and communities we serve.
  
  Introducing the New York Innovation Center: Delivering a central bank innovation execution
  
  Do you have a request for information and records? Learn how to submit it.
  
  Learn about the history of the New York Fed and central banking in the United States through articles, speeches, photos and video.
Markets & Policy Implementation

Economic Research
- Economic Research
- U.S. Economy
  - Consumer Expectations & Behavior
  - Growth & Inflation
  - Labor Market
  - Financial Stability
  - Banking
- REGIONAL ECONOMY
- RESEARCHERS
  - PUBLICATIONS
  - RESEARCH CENTERS
  - CALENDAR

Financial Institution Supervision
- Financial Institution Supervision
- Supervision & Regulation
  - Circulars
  - Regulations
- Reporting Forms & Instructions
  - Reporting Forms
  - Correspondence
- Bank Applications
- Consumer Protection
  - Community Reinvestment Act Exams
  - Frauds and Scams
- As part of our core mission, we supervise and regulate financial institutions in the Second District. Our primary objective is to maintain a safe and competitive U.S. and global banking system.
  
  The Governance & Culture Reform hub is designed to foster discussion about corporate governance and the reform of culture and behavior in the financial services industry.
  
  Need to file a report with the New York Fed? Here are all of the forms, instructions and other information related to regulatory and statistical reporting in one spot.
  
  The New York Fed works to protect consumers as well as provides information and resources on how to avoid and report specific scams.
Financial Services & Infrastructure
- Financial Services & Infrastructure
- Financial Services & Operations
- Financial Market Infrastructure & Reform
- The Federal Reserve Bank of New York works to promote sound and well-functioning financial systems and markets through its provision of industry and payment services, advancement of infrastructure reform in key markets and training and educational support to international institutions.
  
  The New York Fed provides a wide range of payment services for financial institutions and the U.S. government.
  
  The New York Fed offers the Central Banking Seminar and several specialized courses for central bankers and financial supervisors.
  
  The New York Fed has been working with tri-party repo market participants to make changes to improve the resiliency of the market to financial stress.
Community Development
& Education

Circular

Revisions to Operating Circular 5

June 30, 2014

Circular No. 12336

Effective August 1, 2014, the Federal Reserve Banks are amending Operating Circular 5, Electronic Access. These revisions mainly address the recent move toward using the FedLine Web^® channel for the submission of certain regulatory reports, as well as changes in technology and related terminology. A number of the revisions also relate to institutions’ responsibilities for their own security environment and new notification requirements relating to suspected unauthorized use of electronic connections and suspected disclosures of confidential information.

Key changes made by this amendment include the following:

The definition of “Institution” in paragraph 1.1 has been broadened to include non-depository institution users of electronic connections for submitting regulatory reports and for other uses.
Paragraph 1.4, Institution’s Security Obligations, has been revised to include additional affirmative security obligations regarding the prevention of fraud and unauthorized access, as well as heightened notification requirements about loss or security incidents.
Paragraph 2.0, Participant’s Equipment and Software, now explicitly provides that a Reserve Bank’s knowledge of noncompliance by an institution or its service provider with Reserve Bank requirements for computers and associated equipment does not constitute the Reserve Bank’s approval of the noncompliance. It also states that noncompliance with Reserve Bank requirements is solely at the risk of the institution and its service provider, where applicable.
Paragraphs 4.7 and 4.8 have been revised to use the more comprehensive term “Malware” rather than “virus” for malicious code that may disrupt the operations of computers or software. In addition, paragraph 4.8 now explicitly requires institutions and their service providers to institute or reinforce procedural controls, such as ensuring the timely patching of software, and regular scanning or assessment of their enterprise environments for vulnerabilities and other exposures.
Paragraph 5.1, Responsibility for Access Control Features, includes more-specific provisions regarding institutions’ responsibilities for preventing and detecting unauthorized logical and physical access to security tokens, passwords, routers, and other access control features associated with the communication facilities used to exchange data with the Reserve Banks.
Paragraph 5.3, Compliance with Reserve Bank Standards, has been revised to include an explicit requirement that institutions and their service providers implement additional security measures as necessary with respect to their own operating environments.
Paragraph 5.4, Confidentiality of Reserve Bank Proprietary and Security-Related Information, has been revised to require institutions and their service providers that become aware of any suspected or confirmed unauthorized disclosure or use of confidential information to immediately notify the Reserve Banks of the unauthorized disclosure or use and to take all reasonable efforts necessary to prevent further unauthorized disclosure or use.

This amendment incorporates a number of other, less significant changes. The definitive text of revised Operating Circular 5 is posted on FRBservices.org.

Your continued use of Federal Reserve Bank services on or after August 1, 2014, constitutes agreement to the new terms of the operating circular.

See the link below on the Federal Reserve Bank Services website for the official version of the amended operating circular. To request a paper copy of any operating circular, contact your Customer Contact Center.

Operating Circulars offsite

“FedLine Web” is a registered service mark of the Federal Reserve Banks. A complete list of marks owned by the Federal Reserve Banks is available at FRBservices.org.

By continuing to use our site, you agree to our Terms of Use and Privacy Statement. You can learn more about how we use cookies by reviewing our Privacy Statement.