Banking regulators have proposed cybersecurity rules that would require institutions considered systemically risky to prove they can run major operations within two hours of an attack or a large systems failure. Other requirements include a cybersecurity risk-management plan that is incorporated into the business strategy.
Reuters (10/19)