Blog, Encryption, Financial Services and Training

Blog

Encryption

Financial Services

Training

NYDFS releases major update to Part 500 cybersecurity requirements for financial services companies

Data Protection Report

NOVEMBER 8, 2023

On November 1, 2023, the New York Department of Financial Services (“NYDFS”) released the finalized amendments of Part 500 of its cybersecurity regulations. Covered entities shall also provide at least annual training and cybersecurity awareness programs that anticipate social engineering attacks (500.14).

Financial Services

Financial Services Cybersecurity Compliance Government

Historic Charges: First Enforcement Action Filed by New York Department of Financial Services Under Cybersecurity Regulation

Data Matters

AUGUST 19, 2020

On July 21, 2020, the New York State Department of Financial Services (NYDFS or the Department) issued a statement of charges and notice of hearing (the Statement) against First American Title Insurance Company (First American) for violations of the Department’s Cybersecurity Requirements for Financial Services Companies, 23 N.Y.C.R.R.

Financial Services

Financial Services Cybersecurity Insurance Risk

Join 55,000+

Insiders

This site is protected by reCAPTCHA and the Google Privacy Policy and Terms of Service apply.

Webinars

Peak Performance: Continuous Testing & Evaluation of LLM-Based Applications

MORE WEBINARS

Trending Sources

5 things to know: Driving innovation with AI and hybrid cloud in the year ahead

IBM Big Data Hub

DECEMBER 18, 2023

For organizations of all types—and especially those in highly regulated industries such as financial services, government, healthcare and telco—considerations including the rise of generative AI, evolving regulations and data sovereignty laws and ongoing security challenges must be top of mind.

Cloud

Cloud Financial Services Compliance Digital transformation

Webinars

Peak Performance: Continuous Testing & Evaluation of LLM-Based Applications

MORE WEBINARS

5 things to know: IBM Cloud’s mission to accelerate innovation for clients

IBM Big Data Hub

AUGUST 1, 2023

We are bringing the power of foundation models with the availability of a GPU as a service on IBM Cloud offering to help organizations tap into artificial intelligence (AI) in a secured environment while aiming to mitigate third- and fourth-party risk.

Financial Services

Financial Services Computer and Electronics Cloud Digital transformation

How Jamworks protects confidentiality while integrating AI advantages

IBM Big Data Hub

JANUARY 12, 2024

Robust encryption, granular access controls and privacy-preserving techniques become imperative to counter the risks of unauthorized data access and use. How to protect data with full authority at rest, in transit and in use Protecting sensitive data requires a holistic approach including computing, containers, databases and encryption.

Cloud

Cloud Data Privacy Encryption Privacy

Confidential Containers with Red Hat OpenShift Container Platform and IBM® Secure Execution for Linux

IBM Big Data Hub

JANUARY 10, 2024

Some example use cases to highlight: Confidential AI: leverage trustworthy AI and while ensuring the integrity of the models and confidentiality of data Organizations leveraging AI models often encounter challenges related to the privacy and security of the data used for training and the integrity of the AI models themselves.

Security

Security Cloud Data Privacy Financial Services

DOL Puts Plan Sponsors and Other Fiduciaries on Notice: ERISA Requires Appropriate Precautions to Mitigate Cybersecurity Threats

Data Matters

APRIL 20, 2021

To the extent recordkeepers or other service providers already offer participants and beneficiaries training of this nature, they should review existing materials to confirm that they reflect all of the Online Security Tips. Obligations of Service Providers Responsible for Plan-Related IT Systems and Data.

Cybersecurity

Cybersecurity Insurance Risk Compliance

Transition period under New York Cybersecurity Regulation ends March 1, 2019

Data Protection Report

JANUARY 7, 2019

The two-year transitional period under the New York State Department of Financial Services (“DFS””) Cybersecurity Regulation , 23 NYCRR 500 (the “Regulation”), will expire on March 1, 2019, with the final remaining requirement becoming effective. February 15 deadline looms for first DFS Cybersecurity Certification.

Cybersecurity

Cybersecurity Compliance Financial Services Risk

FTC Seeks Comment on Proposed Changes to its GLBA Safeguards and Privacy Rules

Data Matters

MARCH 12, 2019

Of particular note, the Safeguards Rule NPRM proposes to align the FTC’s requirements with those of the New York Department of Financial Services (“NYDFS”), as found in its cybersecurity regulations, and the National Association of Insurance Commissioners (“NAIC”), as found in its insurance data security model law.

Privacy

Privacy IT Information Security Insurance

The Week in Cyber Security and Data Privacy: 8 – 14 January 2024

IT Governance

JANUARY 16, 2024

Police confiscated 11 mobile phones, 7 flash drives, 5 laptops, 4 SD cards, 3 Wi-Fi routers, 2 hard drives, a desktop and a modem, as well as several financial documents containing personal and bank account information belonging to other people. In the meantime, if you missed it, check out last week’s round-up.

Data Privacy

Data Privacy Privacy Manufacturing Retail

New York Regulators Call on Insurers to Strengthen the Cyber Underwriting Process

Hunton Privacy

FEBRUARY 25, 2021

As reported on the Hunton Insurance Recovery blog , on February 4, 2021, the New York Department of Financial Services (“NYDFS”), which regulates the business of insurance in New York, has issued guidelines, in the Insurance Circular Letter No. Obtain cybersecurity expertise to properly understand and evaluate cyber risk.

Insurance

Insurance Cybersecurity Risk Education

An Approach to Cybersecurity Risk Oversight for Corporate Directors

Data Matters

APRIL 23, 2018

Encrypting critical data assets. The NACD Handbook, in this respect, suggests steps such as nominating a cyber-expert to the board itself, creating a cross-departmental cyber committee that reports directly to the board, or implementing formal director-education training. Encrypting Critical Data Assets.

Cybersecurity

Cybersecurity Risk Passwords Authentication

Information Management Today

NYDFS releases major update to Part 500 cybersecurity requirements for financial services companies

Historic Charges: First Enforcement Action Filed by New York Department of Financial Services Under Cybersecurity Regulation

Webinars

Trending Sources

5 things to know: Driving innovation with AI and hybrid cloud in the year ahead

Webinars

5 things to know: IBM Cloud’s mission to accelerate innovation for clients

How Jamworks protects confidentiality while integrating AI advantages

Confidential Containers with Red Hat OpenShift Container Platform and IBM® Secure Execution for Linux

DOL Puts Plan Sponsors and Other Fiduciaries on Notice: ERISA Requires Appropriate Precautions to Mitigate Cybersecurity Threats

Transition period under New York Cybersecurity Regulation ends March 1, 2019

FTC Seeks Comment on Proposed Changes to its GLBA Safeguards and Privacy Rules

The Week in Cyber Security and Data Privacy: 8 – 14 January 2024

New York Regulators Call on Insurers to Strengthen the Cyber Underwriting Process

An Approach to Cybersecurity Risk Oversight for Corporate Directors

Stay Connected