Proposed Amendments to NY Financial Services Cybersecurity Regulations Impose New Obligations on Large Entities, Boards of Directors and CISOs
Hunton Privacy
AUGUST 15, 2022
As part of the “training and monitoring” requirements under Section 500.14 Covered entities must undergo annual penetration testing by a qualified independent party, as well as regular vulnerability assessments, and material gaps found during testing must be documented and reporting to the senior governing body.
Let's personalize your content