Blog, Cybersecurity, Data, Financial Services and Security

NYDFS releases major update to Part 500 cybersecurity requirements for financial services companies

Data Protection Report

NOVEMBER 8, 2023

On November 1, 2023, the New York Department of Financial Services (“NYDFS”) released the finalized amendments of Part 500 of its cybersecurity regulations. Some requirements also apply specifically to larger covered entities falling under the “Class A companies” category.

Financial Services

Financial Services Cybersecurity Compliance Government

New York Enacts Stricter Data Cybersecurity Laws

Data Matters

AUGUST 5, 2019

On July 25, 2019, Governor Cuomo signed the two bills into law, one which amended the state’s data breach notification law, and another that created additional obligations for data breaches at credit reporting agencies. The Stop Hacks and Improve Electronic Data Security Act.

Cybersecurity

Cybersecurity Data breaches Privacy Risk

Understanding China’s Data Regulatory Regime: What Are Important Data? And Can They Be Transferred Outside Of China?

Data Matters

APRIL 11, 2022

The concept of “important data” is a cornerstone of China’s data regulatory regime. The Cyber Security Law (2017) (the CSL ) prohibits operators of critical information infrastructures ( CIIs ) from transferring their “important data” and personal information outside of China. Then, what are “important data”?

Military

Military Artificial Intelligence Security Financial Services

The Privacy Officers’ New Year’s Resolutions

Data Protection Report

JANUARY 6, 2020

2020 could well be a year of data export turmoil – so brace yourself! The Advocate General (AG) delivered his non-binding opinion on the SCCs just before Christmas (see our blog post ). Data localisation issues are also set to resurface during 2020. aka data and records retention). Brace yourself (for export turbulence).

Privacy

Privacy GDPR Data breaches Risk

6 Best Threat Intelligence Feeds to Use in 2023

eSecurity Planet

AUGUST 10, 2023

Threat intelligence feeds are continually updated streams of data that inform users of different cybersecurity threats, their sources, and any infrastructure impacted or at risk of being impacted by those threats. To get a better idea of what each top threat intelligence feed solution offers, take a look at our comparison table below.

Cybersecurity

Cybersecurity Access Metadata Energy and Utilities

The Privacy Officers’ New Year’s Resolutions

Data Protection Report

JANUARY 6, 2020

2020 could well be a year of data export turmoil – so brace yourself! The Advocate General (AG) delivered his non-binding opinion on the SCCs just before Christmas (see our blog post ). Data localisation issues are also set to resurface during 2020. aka data and records retention). Brace yourself (for export turbulence).

Privacy

Privacy GDPR Data breaches Risk

CyberheistNews Vol 13 #07 [Scam of the Week] The Turkey-Syria Earthquake

KnowBe4

FEBRUARY 14, 2023

Blog post with links: [link] [New PhishER Feature] Immediately Add User-Reported Email Threats to Your M365 Blocklist Now there's a super easy way to keep malicious emails away from all your users through the power of the KnowBe4 PhishER platform! Blog post with links: [link] Are Your Users Making Risky Security Mistakes?

Phishing

Phishing Security awareness Compliance Risk

Summary – “Industry in One: Financial Services”

ARMA International

NOVEMBER 7, 2019

The scope of a records and information management (RIM) program in financial services can seem overwhelming. Compared to other industries, the complexities of managing records and information in financial services are arguably some of the toughest to solve, primarily because of the intense regulatory scrutiny.

Financial Services

Financial Services Communications Compliance Risk

An Approach to Cybersecurity Risk Oversight for Corporate Directors

Data Matters

APRIL 23, 2018

Recent guidance from the Securities and Exchange Commission (SEC) on disclosure and enforcement actions by the Federal Trade Commission (FTC) make clear that cybersecurity is no longer a niche topic, but a concern significant enough to warrant the oversight of corporate boards of directors.

Cybersecurity

Cybersecurity Risk Passwords Authentication

Comments Sought on Proposed Rulemaking: Computer-Security Incident Notification Requirements for Banking Organizations and Their Bank Service Providers

Data Matters

DECEMBER 23, 2020

Federal Deposit Insurance Corporation (FDIC) approved and the federal banking agencies jointly announced on December 18 a notice of proposed rulemaking, Computer-Security Incident Notification Requirements for Banking Organizations and Their Bank Service Providers (NPR). On December 15, 2020, the U.S.

Security

Security Cybersecurity Insurance Communications

CyberheistNews Vol 13 #25 [Fingerprints All Over] Stolen Credentials Are the No. 1 Root Cause of Data Breaches

KnowBe4

JUNE 20, 2023

1 Root Cause of Data Breaches Verizon's DBIR always has a lot of information to unpack, so I'll continue my review by covering how stolen credentials play a role in attacks. This year's Data Breach Investigations Report has nearly 1 million incidents in their data set, making it the most statistically relevant set of report data anywhere.

Data breaches

Data breaches Phishing Security awareness Ransomware

SEC Requests Comment on Regulation of Information Providers Under the U.S. Investment Advisers Act

Data Matters

JUNE 24, 2022

Securities and Exchange Commission (Commission) issued a request for comment with respect to whether certain index, model, pricing, and other information providers should be regulated as investment advisers under the Investment Advisers Act of 1940. 17, 1995); Media General Financial Services, Inc. ,

Marketing

Marketing Financial Services Analytics Sales

Infosource Global Capture & IDP Vertical Market Analysis 2022-2023 Update

Info Source

DECEMBER 8, 2023

These solutions are designed to acquire, classify, validate, and convert business inputs into valuable data for use in business transactions, analytics, records management, discovery, and compliance applications. All business inputs are interpreted to understand the content, and where and why it is needed.

Marketing

Marketing Customer Experience Energy and Utilities Digital transformation

Information Management Today

NYDFS releases major update to Part 500 cybersecurity requirements for financial services companies

New York Enacts Stricter Data Cybersecurity Laws

Trending Sources

Understanding China’s Data Regulatory Regime: What Are Important Data? And Can They Be Transferred Outside Of China?

The Privacy Officers’ New Year’s Resolutions

6 Best Threat Intelligence Feeds to Use in 2023

The Privacy Officers’ New Year’s Resolutions

CyberheistNews Vol 13 #07 [Scam of the Week] The Turkey-Syria Earthquake

Summary – “Industry in One: Financial Services”

An Approach to Cybersecurity Risk Oversight for Corporate Directors

Comments Sought on Proposed Rulemaking: Computer-Security Incident Notification Requirements for Banking Organizations and Their Bank Service Providers

CyberheistNews Vol 13 #25 [Fingerprints All Over] Stolen Credentials Are the No. 1 Root Cause of Data Breaches

SEC Requests Comment on Regulation of Information Providers Under the U.S. Investment Advisers Act

Infosource Global Capture & IDP Vertical Market Analysis 2022-2023 Update

Stay Connected