Newsroom

The Federal Financial Institutions Examination Council's cybersecurity assessment tool, released in 2015, will be incorporated into NCUA's exam process in the second half of this year, according to the agency's 2016 exam priorities released today.

The FFIEC assessment tool allows financial institutions to do self-assessments to help them improve their risk management strategies. NAFCU, while supporting credit unions' use of the tool, has urged NCUA to keep it voluntary.

The FFIEC includes representatives from the Federal Reserve Board, FDIC, NCUA, the Office of the Comptroller of the Currency, CFPB and the State Liaison Committee.

NCUA's Letter to Credit Unions, 16-CU-01, also notes that the agency is in the process of updating interest-rate risk management supervisory guidance, to be published this year, which will also be used during examinations.

Also listed as NCUA's 2016 supervisory priorities:

• credit union service organization reporting through the CUSO registry, which NCUA said more information would be coming in a separate Letter to Credit Unions;
• TILA-RESPA integrated mortgage disclosure rule compliance;
• Bank Secrecy Act compliance, specifically credit unions' relationships with money servicing businesses; and
• credit unions' incident response programs.