Norman Roos

Norman Roos

Norman Roos, a member of Robinson+Cole’s Business Transactions Group, concentrates his practice on transactional, regulatory, and technology matters relating to the financial services and real estate industries. He is also a member of the firm’s Financial Services Cyber-Compliance Team and advises financial institutions concerning data privacy and security matters, particularly in relation to policy planning and implementation.

Mr. Roos is counsel to the Connecticut Mortgage Bankers Association, Inc., and is president-elect of the American College of Mortgage Attorneys where he has served on the Board of Regents and as Connecticut State Chair. A member of the Connecticut Bar Association, Mr. Roos is Past Chair of the Financial Institutions Law Section. He has served on a number of Connecticut Law Revision Study Committees including those on Uniform Common Interest Ownership Act, Electronic Communications, Mortgagor Liability, and Electronic Recording of Land Records. Read his full bio here.

Subscribe to all posts by Norman Roos

European Banking Authority contemplates the use of consumer data by financial institutions

In order to better address both the opportunities and risks associated with the innovative use of consumer data by financial institutions, the European Banking Authority (EBA) released a discussion paper last week seeking public comments on the subject. The EBA notes in the paper that the increasing digitalization of the economy and the adoption of … Continue Reading

Recent indictment underscores threat to financial institutions’ cybersecurity

In an era of cyberwarfare, financial institutions can find themselves in the crossfire. The U.S. government indicted seven Iranian hackers last week, charging the individuals for their roles in a 2011 series of cyber-attacks targeting at least 46 major banking institutions. The attacks, which Attorney General Loretta Lynch called “relentless,” “systematic” and “widespread,” were carried … Continue Reading

FDIC cybersecurity framework features four areas critical to bank security

Long gone are the days when a financial institution’s primary security concern was protecting cash in the bank vault, the Federal Deposit Insurance Corporation (FDIC) acknowledges in its recent article, “A Framework for Cybersecurity,” released February 1, 2016. Instead, the framework asserts that cyber-attacks now represent “one of the most critical challenges facing the financial … Continue Reading

FAST Act loosens financial institutions’ privacy policy notice requirements

In addition to providing long-term funding for highway infrastructure improvements and other transportation projects, the newly enacted Fixing America’s Surface Transportation Act (FAST Act) seeks to reduce consumer confusion by eliminating annual privacy notice requirements for financial institutions in some circumstances. The Gramm-Leach-Bliley Act (GLBA) requires financial institutions to provide consumers with notice of the … Continue Reading

Cybersecurity and resiliency: The Financial Sector’s “New Frontier”

“The Internet has a dark side,” Deputy Treasury Secretary Sarah Bloom Raskin remarked while addressing senior level banking executives at this year’s Clearing House Annual Conference. Raskin focused her comments on malicious cyber activity, pointing out that weaknesses in the financial sector’s complex interconnected system attract bad actors like water “drawn to cracks in a … Continue Reading

New Landmark Consumer Disclosure Rules Trigger Privacy Concerns

The Consumer Financial Protection Bureau’s new “Know Before You Owe” mortgage disclosure rule is designed to prevent surprises at the closing table, but with increased transparency come concerns over borrower and seller privacy. The TILA RESPA Integrated Disclosure Rule (TRID) took effect October 3, 2015 and replaces four previous disclosure forms with just two, the … Continue Reading

Protecting financial institutions in cyberspace—U.S. financial regulators come up with a new tool kit to stem cyberthreats

The Federal Financial Institutions Examination Council (FFIEC) has recently developed a new tool to help U.S. financial institutions combat the increasing volume and sophistication of cyber attacks. To blunt threats to a financial institution’s computers, computer systems, electronic communications network and infrastructure, the FFIEC’s June 2015 Cybersecurity Assessment Tool is designed to help financial institutions … Continue Reading
LexBlog