Eversheds Sutherland Cybersecurity and Privacy Insights Blog
content top

The New Vendor Management World Under NYDFS’ New Cyber Regulation

As of March 1, 2019, the New York State Department of Financial Services’ (NYDFS) cybersecurity regulation, 23 NYCRR Part 500, requires financial services institutions regulated by NYDFS to implement policies and procedures to address the cybersecurity risks posed by third-party service providers to the institutions’ nonpublic information (NPI). Learn...

Will you meet the new cybersecurity vendor management requirements? ATTORNEY ADVERTISING

March 1 is upon us, now what? The deadline for the NY Department of Financial Services’ “first of its kind” cyber regulation has arrived for financial services institutions to implement programs that properly evaluate and manage the data security risks posed by their vendors. To manage these risks, institutions must go beyond the traditional vendor management function and far deeper...

Cybersecurity and Data Privacy review and update: Looking back on 2018 and planning ahead for 2019

From the implementation of the GDPR to the passage of the CCPA, the year 2018 proved to be a monumental one for cybersecurity and data privacy. Regulators from around the world responded to devastating, large-scale cyber-attacks, and a desire for their citizens to have more control over their data, by passing a wide range of regulations aimed at protecting consumer information. These...

Financial institutions in Singapore to strengthen their cyber resilience— Monetary Authority of Singapore consults on cyber security measures

Recently, JPMorgan Chase CEO Jamie Dimon warned that the “biggest vulnerability” for the financial system is the threat of cyber attacks. Hackers, especially those working for nation-states, have grown more sophisticated and more determined, especially as geopolitical tensions rise. On September 6, 2018, the Monetary Authority of Singapore (MAS) issued a Consultation Paper on the...

What European Financial Institutions need to know about New York’s Cybersecurity Regulations

From 28 August 2017, banks, insurers, and other financial institutions operating in New York will be required to comply with the New York Department of Financial Services (“NYDFS”) Cybersecurity Requirements for Financial Services Companies (the “Regulations”). Finalized on March 1, 2017, firms had 180 days from the effective date to comply with the core requirements of the...

« Older Entries