A Cybersecurity Storm and Winds of Change: NY DFS requires all New York financial institutions to report effects of SolarWinds hack
Posted on Dec 22, 2020 in Cybersecurity, Government, Regulation | Comments Off on A Cybersecurity Storm and Winds of Change: NY DFS requires all New York financial institutions to report effects of SolarWinds hack
The New York Department of Financial Services (NY DFS) issued an alert on Friday, December 18, 2020, requiring all NY DFS regulated entities to immediately report whether they have been affected in any way by the massive, state-sponsored security breach of SolarWinds. NY DFS’s request for immediate notification from all affected entities goes beyond what is normally required...
No rest for the weary: cybersecurity and privacy enforcement actions heat up
Posted on Aug 27, 2020 in Cybersecurity, Data Privacy, Financial Services, GDPR, Regulation | Comments Off on No rest for the weary: cybersecurity and privacy enforcement actions heat up
A recent wave of cybersecurity and privacy enforcement actions cautions businesses dealing in personal data to strengthen their security and compliance plans. The New York Department of Financial Services recently announced its first enforcement action under its cybersecurity regulation. The California Attorney General began enforcement-related inquiries under the newly enacted...
The New Vendor Management World Under NYDFS’ New Cyber Regulation
Posted on Mar 29, 2019 in Cybersecurity, Data Privacy, Government, Regulation | Comments Off on The New Vendor Management World Under NYDFS’ New Cyber Regulation
As of March 1, 2019, the New York State Department of Financial Services’ (NYDFS) cybersecurity regulation, 23 NYCRR Part 500, requires financial services institutions regulated by NYDFS to implement policies and procedures to address the cybersecurity risks posed by third-party service providers to the institutions’ nonpublic information (NPI). Learn more.
Will you meet the new cybersecurity vendor management requirements? ATTORNEY ADVERTISING
Posted on Mar 5, 2019 in Cybersecurity, Data Privacy, Insurance | Comments Off on Will you meet the new cybersecurity vendor management requirements? ATTORNEY ADVERTISING
March 1 is upon us, now what? The deadline for the NY Department of Financial Services’ “first of its kind” cyber regulation has arrived for financial services institutions to implement programs that properly evaluate and manage the data security risks posed by their vendors. To manage these risks, institutions must go beyond the traditional vendor management function and far deeper...
Cybersecurity and Data Privacy review and update: Looking back on 2018 and planning ahead for 2019
Posted on Mar 1, 2019 in Cybersecurity, Data Privacy, Energy and Infrastructure, Financial Services, GDPR, Government, Insurance, Intellectual Property, Litigation, Regulation, Securities & Corporate Governance | Comments Off on Cybersecurity and Data Privacy review and update: Looking back on 2018 and planning ahead for 2019
From the implementation of the GDPR to the passage of the CCPA, the year 2018 proved to be a monumental one for cybersecurity and data privacy. Regulators from around the world responded to devastating, large-scale cyber-attacks, and a desire for their citizens to have more control over their data, by passing a wide range of regulations aimed at protecting consumer information. These...
Subscribe
FEATURED
Check out the BreachLawWATCH app which allows easy access to data breach statutes across the United States and a growing number of jurisdictions.
Video: As the challenges cybersecurity and data privacy present are often global
