The National Futures Association ("NFA") proposed amendments to an Interpretive Notice on Information Systems Security Programs ("ISSPs"). The Notice requires NFA member firms - including futures commission merchants, introducing brokers, commodity pool operators and commodity trading advisors - to adopt a written ISSP to address the risk of unauthorized access to, and attacks on, member firm I.T. systems. The Notice also requires member firms to take certain steps in the event of an I.T. systems breach. NFA proposed the following amendments to ISSP program requirements:
The amendments will become effective 10 days after receipt of the submission by the CFTC, unless otherwise determined.