NYDFS releases major update to Part 500 cybersecurity requirements for financial services companies
Data Protection Report
NOVEMBER 8, 2023
On November 1, 2023, the New York Department of Financial Services (“NYDFS”) released the finalized amendments of Part 500 of its cybersecurity regulations. Class A companies are specifically required to: – conduct independent audits of their cybersecurity program based on their risk assessment (500.2(c));
Let's personalize your content