As the threat landscape of the electronic payments system evolves, we continually review our FedLine® security controls to help ensure that they address new and changing risks. As part of our ongoing commitment to security, we updated security controls for the FedLine Advantage®, FedLine Command®, FedLine Direct® and Check 21 Large File Delivery Solutions on January 29, 2018. These controls are designed to align with industry best practices, so while some controls are new to our documentation, many of them are likely already part of your organization’s security program.
Action Item:FedLine Advantage, FedLine Command, FedLine Direct and Check 21 Large File End User Authorization Contacts (EUACs) are responsible for ensuring that their organizations and staff comply with the updated security controls by October 1, 2018.
Do these updated security controls impact my organization?
The updated security controls apply to the FedLine Advantage, FedLine Command, FedLine Direct and Check 21 Large File Delivery Solutions. FedLine Web® customers are not impacted at this time.
Where can I find the updated security controls?
We have updated FedLine and Check 21 Large File Delivery documentation to reflect the new security controls. The new and updated security controls cover the following topics:
- PC and Operating System Controls
- Server and Middleware Controls
- Device Controls
- Network Controls
- Operational Controls
Updated FedLine Advantage documents are available to FedLine Advantage EUACs via the EUAC Center within FedLine Home. FedLine Command, FedLine Direct and Check 21 Large File Delivery documents were distributed via email to EUACs responsible for these FedLine Solutions the week of January 29, 2018. Please work with your organization’s EUACs to review the documents.
What has changed?
The beginning of each updated document features a “Document Change Notes” section. This section includes a summary of the controls that have been added or modified since the previous version of the document.
Where can I find more information?
Regarding your FedLine connection, EUACs are the primary contacts between your organization and the Federal Reserve Banks. EUACs and senior leaders at impacted organizations have received multiple emails about the updated security controls. We encourage you to work with your EUACs and technical staff to review the updated documentation and determine what changes your organization needs to make. If you have questions, please contact your account executive or the Customer Contact Center.