Proposed Amendments to NY Financial Services Cybersecurity Regulations Impose New Obligations on Large Entities, Boards of Directors and CISOs
Hunton Privacy
AUGUST 15, 2022
As part of the “risk assessment” requirements under Section 500.9 of the Proposed Amendments, Class A Companies must use external experts to conduct a risk assessment at least once every three years. A covered entity’s CISO must have adequate independence and authority to ensure cyber risks are appropriately managed.
Let's personalize your content