Understanding the New York Department of Financial Services Cybersecurity Regulation

Initially enacted in 2017, The NY DFS Cybersecurity Regulation (23 NYCRR §§ 500.0 to 500.24) requires New York insurance companies, banks, and other regulated financial services institutions, whether based or operating in New York State, to assess their cybersecurity risk profile and implement programs to mitigate against likely risks. Recently amended in November 2023, NY DFS has significantly increased the requirements covered companies must meet.

Download this resource to learn:

• Whether the NY DFS Cybersecurity Regulation applies to your organization
• What requirements you must fulfill to be in compliance with the Regulation
• How Data Discovery and Data Retention technology can help you comply