Andy always posts the best advice:
For a sample IB agreement, look at the signup page of other banks. That will give you some ideas on what you want in yours. Just be sure it matches what you actually are doing.
Don't try to re-invent the wheel - go to the disclosure pages of other banks, especially those that are with the same vendor. Try to look at 2-3 examples and you will probably end up with at least one that looks like they used legal assistance to come up with the words.
By the way, there is no security features disclosure. There is no requirement for such a disclosure. Those elements are incorporated within internal policy/procedures with the general public given a brochure that talks about safety, encrption, firewalls, how a PIN is established, etc but only in generate terms.