2022, Cybersecurity, Financial Services and IT - Information Management Today

NYDFS releases major update to Part 500 cybersecurity requirements for financial services companies

Data Protection Report

NOVEMBER 8, 2023

On November 1, 2023, the New York Department of Financial Services (“NYDFS”) released the finalized amendments of Part 500 of its cybersecurity regulations. Some requirements also apply specifically to larger covered entities falling under the “Class A companies” category.

Financial Services

Financial Services Cybersecurity Compliance Government

Top Cybersecurity Startups to Watch in 2022

eSecurity Planet

JANUARY 11, 2022

Information security products , services, and professionals have never been in higher demand, making for a world of opportunities for cybersecurity startups. Investors recognize the potential too, as funding for cybersecurity ventures more than doubled from previous years to almost $22 billion in 2021. Series B SECURITI.ai

Cybersecurity

Cybersecurity Cloud Compliance Analytics

Join 55,000+

Insiders

This site is protected by reCAPTCHA and the Google Privacy Policy and Terms of Service apply.

Webinars

Generative AI Deep Dive: Advancing from Proof of Concept to Production

MORE WEBINARS

Trending Sources

NYDFS proposes significant cybersecurity regulation amendments

Data Protection Report

NOVEMBER 14, 2022

On November 9, 2022, the New York Department of Financial Services (NYDFS) officially proposed changes to its cybersecurity regulation and opened a 60-day public comment period. Notice of Cybersecurity Event. Revised Definition of Class A Companies and other Key Requirements. Board Expertise and Oversight.

Cybersecurity

Cybersecurity Passwords Risk Compliance

Webinars

Generative AI Deep Dive: Advancing from Proof of Concept to Production

MORE WEBINARS

Proposed Amendments to NY Financial Services Cybersecurity Regulations Impose New Obligations on Large Entities, Boards of Directors and CISOs

Hunton Privacy

AUGUST 15, 2022

On July 29, 2022, the New York Department of Financial Services (“NYDFS”) posted proposed amendments (“Proposed Amendments”) to its Cybersecurity Requirements for Financial Services Companies (“Cybersecurity Regulations”).

Financial Services

Financial Services Cybersecurity Risk Passwords

ICYMI – Late December in privacy and cybersecurity

Data Protection Report

JANUARY 30, 2023

Late December and early January tend to be a busy time for everyone, so you may have missed a privacy update or two during that time. We have set out some updates in the form of questions, with some links where you can find more information. Answers are below. Which one is NOT on the list? 1798.135(a).)

Privacy

Privacy Cybersecurity Personal data Insurance

$8 million penalty to NYDFS – and another case of over-retention

Data Protection Report

JANUARY 18, 2024

On January 3, 2024, the New York Department of Financial Services announced a consent order with GGT, where GGT agreed to pay NYDFS $8 million and to surrender its BitLicense (for cryptocurrency trading), due to alleged violations of NYDFS’ cybersecurity and its virtual currency regulations.

Cybersecurity

Cybersecurity Financial Services Compliance Encryption

NYDFS proposes significant cybersecurity regulation amendments

Data Protection Report

AUGUST 11, 2022

On July 29, 2022, the New York Department of Financial Services (NYDFS) announced a “pre-proposed outreach” of material proposed changes to almost every section of its cybersecurity regulations, and would affect each entity covered by the current regulations of 23 NYCRR Part 500. The Proposed Regulation Changes.

Cybersecurity

Cybersecurity Risk Passwords Compliance

Infosource Global Capture & IDP Vertical Market Analysis 2022-2023 Update

Info Source

DECEMBER 8, 2023

CURRENT VERTICAL MARKET BREAKDOWN The Finance segment (Banking and Financial Services combined with Insurance) represents the largest industry sector. The Healthcare segment is the third largest sector based on demand for Capture & IDP Solution sales in 2022. for ID, permits, grants, support services etc.).

Marketing

Marketing Customer Experience Energy and Utilities Digital transformation

Congress Agrees – 72 Hour Cyber Incident Reporting Requirement to Take Effect

Data Protection Report

MARCH 16, 2022

On March 15, 2022, President Biden signed an omnibus spending bill into law, which, in part, requires companies to report cyber incidents and ransom payments. Covered entities may operate in a number of critical infrastructure sectors, including energy, financial services, food and agriculture, healthcare, and information technology.

Ransomware

Ransomware FOIA Agriculture Cybersecurity

SEC Requests Comment on Regulation of Information Providers Under the U.S. Investment Advisers Act

Data Matters

JUNE 24, 2022

On June 15, 2022, the U.S. Responses to the request for comment are due the later of August 16, 2022, or 30 days after publication of the release in the Federal Register. whether customization and personalization of services changes these analyses. Background. The Commission’s Questions. how providers are compensated.

Marketing

Marketing Financial Services Analytics Sales

CPRA Becomes the New Standard. Are You Ready?

Thales Cloud Protection & Licensing

NOVEMBER 30, 2020

It amends the California Consumer Privacy Act (CCPA) and goes into effect January 1, 2023, for all data collected starting January 1, 2022 1. The National Law Review notes “Under the CPRA, certain new rights and compliance burdens will attach to a new category of personal information called ‘sensitive personal information.’”

Privacy

Privacy GDPR Compliance Data breaches

CyberheistNews Vol 13 #07 [Scam of the Week] The Turkey-Syria Earthquake

KnowBe4

FEBRUARY 14, 2023

There are going to be a raft of scams varying from blood drives to pleas for charitable contributions for victims and their families. Unfortunately, this type of scam is the worst kind of phishbait, and it is a very good idea to inoculate people before they get suckered into falling for a scam like this.

Phishing

Phishing Security awareness Compliance Risk

CyberheistNews Vol 13 #25 [Fingerprints All Over] Stolen Credentials Are the No. 1 Root Cause of Data Breaches

KnowBe4

JUNE 20, 2023

In 2022, they reportedly stole around $1.7 CyberheistNews Vol 13 #25 | June 20th, 2023 [Fingerprints All Over] Stolen Credentials Are the No. 1 Root Cause of Data Breaches Verizon's DBIR always has a lot of information to unpack, so I'll continue my review by covering how stolen credentials play a role in attacks.

Data breaches

Data breaches Phishing Security awareness Ransomware

NYDFS releases major update to Part 500 cybersecurity requirements for financial services companies

Top Cybersecurity Startups to Watch in 2022

Webinars

Trending Sources

NYDFS proposes significant cybersecurity regulation amendments

Webinars

Proposed Amendments to NY Financial Services Cybersecurity Regulations Impose New Obligations on Large Entities, Boards of Directors and CISOs

ICYMI – Late December in privacy and cybersecurity

$8 million penalty to NYDFS – and another case of over-retention

NYDFS proposes significant cybersecurity regulation amendments

Infosource Global Capture & IDP Vertical Market Analysis 2022-2023 Update

Congress Agrees – 72 Hour Cyber Incident Reporting Requirement to Take Effect

SEC Requests Comment on Regulation of Information Providers Under the U.S. Investment Advisers Act

CPRA Becomes the New Standard. Are You Ready?

CyberheistNews Vol 13 #07 [Scam of the Week] The Turkey-Syria Earthquake

CyberheistNews Vol 13 #25 [Fingerprints All Over] Stolen Credentials Are the No. 1 Root Cause of Data Breaches

Stay Connected