ARMA International

NOVEMBER 7, 2019

The scope of a records and information management (RIM) program in financial services can seem overwhelming. Compared to other industries, the complexities of managing records and information in financial services are arguably some of the toughest to solve, primarily because of the intense regulatory scrutiny.

Financial Services 52

Financial Services Communications Compliance Risk 52

Hunton Privacy

AUGUST 15, 2022

On July 29, 2022, the New York Department of Financial Services (“NYDFS”) posted proposed amendments (“Proposed Amendments”) to its Cybersecurity Requirements for Financial Services Companies (“Cybersecurity Regulations”). As part of the “risk assessment” requirements under Section 500.9 Additional Requirements.

Financial Services 55

Financial Services Cybersecurity Risk Passwords 55

Hunton Privacy

APRIL 22, 2020

On April 13, 2020, the New York Department of Financial Services (“NYDFS”) issued guidance (“April guidance”) to all New York State entities covered under NYDFS’s cybersecurity regulation regarding assessing and addressing heightened cybersecurity risks due to the COVID-19 pandemic.

Financial Services 71

Financial Services Cybersecurity Phishing Risk 71

IBM Big Data Hub

MARCH 20, 2024

Organizations in the financial services, healthcare and other regulated sectors must place an even greater focus on managing risk—not only to meet compliance requirements, but also to maintain customer confidence and trust. Similarly, in the U.S.

Cloud 79

Cloud Financial Services Risk Business Services 79

Data Matters

AUGUST 19, 2020

On July 21, 2020, the New York State Department of Financial Services (NYDFS or the Department) issued a statement of charges and notice of hearing (the Statement) against First American Title Insurance Company (First American) for violations of the Department’s Cybersecurity Requirements for Financial Services Companies, 23 N.Y.C.R.R.

Financial Services 68

Financial Services Cybersecurity Insurance Risk 68

Security Affairs

MARCH 14, 2022

While the Russia-Ukraine cyber conflict goes on, nation-state actors, crooks, and hacktivists continue to pose critical infrastructure at risk. Critical infrastructure is a privileged target for almost any kind of threat actor, the ongoing Russia-Ukraine cyber conflict is posing them at risk. ” reported researchers from Cyble.

Risk 94

Risk Financial Services Manufacturing Communications 94

IBM Big Data Hub

OCTOBER 10, 2023

Cyber risk is preeminent in today’s threat landscape, and that includes attacks on the software supply chain. These are referred to as supply chain risks, and they include vulnerable code that may be included from open source or third parties. This includes all of the pieces required to build the inventory and evidence lockers.

Cloud 80

Cloud Financial Services Compliance Risk 80

Hunton Privacy

JULY 5, 2023

On June 28, 2023, the New York Department of Financial Services (“NYDFS”) published an updated proposed Second Amendment (“Amendment”) to its Cybersecurity Regulation, 23 NYCRR Part 500. Risk Assessments : NYDFS removed in its entirety the previously proposed requirement under Section 500.9(d)

Cybersecurity 113

Cybersecurity IT Compliance Financial Services 113

Data Matters

FEBRUARY 20, 2019

On January 18, 2019, the New York State Department of Financial Services (NYDFS) issued Circular Letter 2019-1 (the Circular Letter), addressing insurers’ use of external consumer data and information sources in underwriting for life insurance. Consumer Disclosures.

Insurance 68

Insurance Financial Services Compliance Retail 68

IBM Big Data Hub

APRIL 22, 2024

Modularity : Deployable architecture follows a modular design pattern, where different components or services are isolated and can be developed, tested and deployed independently. This allows for easier management and reduces the risk of dependencies causing deployment issues.

Cloud 67

Cloud Financial Services Compliance Systems administration 67

IBM Big Data Hub

AUGUST 1, 2023

We are bringing the power of foundation models with the availability of a GPU as a service on IBM Cloud offering to help organizations tap into artificial intelligence (AI) in a secured environment while aiming to mitigate third- and fourth-party risk.

Financial Services 68

Financial Services Computer and Electronics Cloud Digital transformation 68

Data Protection Report

NOVEMBER 14, 2022

On November 9, 2022, the New York Department of Financial Services (NYDFS) officially proposed changes to its cybersecurity regulation and opened a 60-day public comment period. Notice of Cybersecurity Event. The frequency of those scans would be determined by the risk assessment.

Cybersecurity 115

Cybersecurity Passwords Risk Compliance 115

Hunton Privacy

OCTOBER 24, 2022

On October 18, 2022, the New York State Department of Financial Services (“NYDFS”) announced that EyeMed Vision Care LLC (“EyeMed”) agreed to a $4.5 As part of the settlement, EyeMed agreed to conduct a comprehensive cybersecurity risk assessment and prepare an action plan that addresses the risks identified in that assessment.

Cybersecurity 67

Cybersecurity Financial Services Risk Phishing 67

Data Protection Report

NOVEMBER 2, 2023

On November 1, 2023, the New York Department of Financial Services (NYDFS) finalized the second amendment to its cybersecurity regulations, which are available here. NYDFS retained the broader term “cybersecurity event” that it uses in several sections of the regulation, but, with respect to notifications to NYDFS (§ 500.17(a)),

Cybersecurity 105

Cybersecurity Compliance Financial Services Government 105

Hunton Privacy

JUNE 9, 2022

Unlike other state laws based on MDL-668, however, the Vermont Insurance Data Security Law declines to establish separate cybersecurity event notification requirements for licensees. Cybersecurity Event Investigation and Notification Requirements. Licensees must maintain records about these cybersecurity events for at least five years.

Insurance 107

Insurance Security Information Security Cybersecurity 107

Collibra

OCTOBER 31, 2023

With business and technology leaders from around the globe exploring how data fuels the industry, and presentations on everything related to accelerating financial data pipelines and delivering data in the cloud, the event offered executive thought leadership on emerging technologies. Already using AI?

Marketing 87

Marketing Government Financial Services Artificial Intelligence 87

Thales Cloud Protection & Licensing

NOVEMBER 20, 2023

Black Friday and Cyber Monday, both hailed as the epitome of shopping extravagance, are also synonymous with a heightened risk of cyberattacks on retail platforms. It becomes, therefore, essential for retailers to consider the fresh insights provided by the Thales 2023 Data Threat Report – Financial Services Edition.

Retail 83

Retail Cybersecurity Financial Services Encryption 83

Data Matters

MAY 4, 2022

By adding these two global market leaders, we are expanding our expertise to better support our clients with the ever growing risks associated with national security and cybersecurity matters across our multi-disciplinary practices.”.

Cybersecurity 167

Cybersecurity Marketing Security Privacy 167

Data Protection Report

APRIL 22, 2021

On April 14, 2021, the New York Department of Financial Services (NYDFS) announced a $3 million settlement with insurance company National Securities Corp. The regulation requires that a licensee report a cybersecurity event to NYDFS within 72 hours of its determination of the event. NYDFS Cybersecurity Regulation.

Cybersecurity 94

Cybersecurity Financial Services Phishing Compliance 94

Hunton Privacy

JULY 12, 2021

On June 30, 2021, the New York State Department of Financial Services (“NYDFS,” the “Department”) issued guidance to all New York state regulated entities on ransomware (the “Guidance”), identifying controls it expects regulated companies to implement whenever possible.

Ransomware 102

Ransomware Security Financial Services Cybersecurity 102

Collibra

MAY 16, 2022

Consider the examples from our peer industries: Operational Risk. For financial services, data governance found its roots in risk. As CROs prioritized Operational Risk post the 2007 financial crisis, those leaders also looked to centralized thought like the Basel Accords.

Risk 91

Risk Government Financial Services Access 91

Data Protection Report

AUGUST 11, 2022

On July 29, 2022, the New York Department of Financial Services (NYDFS) announced a “pre-proposed outreach” of material proposed changes to almost every section of its cybersecurity regulations, and would affect each entity covered by the current regulations of 23 NYCRR Part 500. Cybersecurity Risk Assessments.

Cybersecurity 58

Cybersecurity Risk Passwords Compliance 58

IBM Big Data Hub

FEBRUARY 5, 2024

The Digital Operational Resilience Act (DORA) marks a significant milestone in the European Union’s (EU) efforts to bolster the operational resilience of the financial sector in the digital age.

Encryption 73

Encryption Data Privacy Compliance Cloud 73

eSecurity Planet

JUNE 27, 2023

Security information and event management (SIEM) systems only have detections for 24 percent of the 196 techniques in MITRE ATT&CK v13, according to a new report. “This implies that adversaries can execute around 150 different techniques that will be undetected by the SIEM,” says the CardinalOps report.

Metadata 107

Metadata Financial Services Insurance Manufacturing 107

Info Source

SEPTEMBER 14, 2023

Andrew discussed the risks and dangers associated with AI, as well as litigation in development that will affect the market. Palmer took attendees through his complex journey or re-engineering the system to the point where it has removed financial risk from the U.S.

Marketing 52

Marketing CMS Financial Services Cloud 52

Cyber Info Veritas

JULY 19, 2018

This is according to a recent survey conducted by Soha Systems, and according to one of the speeches delivered by the Superintendent of the New York State Department of Financial Services, Mr. Benjamin Lawsky, “ A company’s cybersecurity is only as strong as the cybersecurity of its third-party vendors ”.

Risk 40

Risk Cybersecurity Compliance Data breaches 40

Data Protection Report

OCTOBER 24, 2022

On October 18, 2022, the New York Department of Financial Services announced a settlement with EyeMed, a licensed life, accident, and health insurer, with respect to a security incident that occurred in 2020. NYDFS found that none of the assessments addressed the risks associated with the compromised O365 mailbox.

Cybersecurity 52

Cybersecurity Personal data Risk Financial Services 52

CGI

MAY 26, 2016

Managing the regulatory risks of cybersecurity: An evolving regulatory landscape. Financial institutions in the U.S. are well aware of the business risks related to cybersecurity but there are an increasing number of related regulatory risks that also need to be addressed. Enterprise technology risk assessment.

Cybersecurity 40

Cybersecurity Risk Financial Services Compliance 40

The Last Watchdog

MARCH 1, 2019

There is a gaping shortage of analysts talented enough to make sense of the rising tide of data logs inundating their SIEM (security information and event management) systems. This, in short, is the multi-headed hydra enterprises must tame in order to mitigate rising cyber risks. But this hasn’t done the trick. Smart money.

Digital transformation 193

Digital transformation Marketing Analytics Risk 193

Data Protection Report

JANUARY 7, 2019

The two-year transitional period under the New York State Department of Financial Services (“DFS””) Cybersecurity Regulation , 23 NYCRR 500 (the “Regulation”), will expire on March 1, 2019, with the final remaining requirement becoming effective. Third-party service provider risk management program.

Cybersecurity 40

Cybersecurity Compliance Financial Services Risk 40

Rippleshot

MAY 7, 2018

Fiserv, a global provider of financial services technology solutions, announced its partnership with Rippleshot to offer Card Risk Office? Fraud Warning, an early breach detection solution that allows financial institutions to identify potential fraud events 30-60 days prior to network alerts.

Financial Services 40

Financial Services Risk Security IT 40

Data Matters

JULY 17, 2020

For the latest insights on the risks posed and effective ways to mitigate them, please join OneTrust DataGuidance and Sidley for a webinar focusing on the cybersecurity issues confronting the payments and fintech sectors in the EU, UK, and U.S. Senior Associate, Cyber Risk Practice, Kroll. Charlotte Allen. Colleen Brown. Max Savoie.

Cybersecurity 68

Cybersecurity Financial Services GDPR Privacy 68

IT Governance

SEPTEMBER 30, 2021

Nevada Restaurant Services, Inc. Provides Notice Of Data Privacy Event | | djournal.com (0). HBP Financial Services Group notice of breach impacting Pathology Consultants of New London, PC (databreaches.net) (0). Notice of Data Event – Simon Eye (14,400).

Data breaches 111

Data breaches Ransomware Financial Services Privacy 111

Hunton Privacy

FEBRUARY 25, 2021

As reported on the Hunton Insurance Recovery blog , on February 4, 2021, the New York Department of Financial Services (“NYDFS”), which regulates the business of insurance in New York, has issued guidelines, in the Insurance Circular Letter No. billion were made under property/casualty policies that were silent about cyber risks.

Insurance 70

Insurance Cybersecurity Risk Education 70

KnowBe4

MAY 31, 2023

That's right – the financial services industry, at least according to cybersecurity vendor Armorblox's 2023 Email Security Threat Report. According to the report, the financial services industry as a target has increased by 72% over 2022 and was the single largest target of financial fraud attacks, representing 49% of all such attacks.

Phishing 81

Phishing File names Security awareness Risk 81

IT Governance

AUGUST 26, 2021

For example, financial services firms may be worried about employees breaching insider trading laws. A hybrid working model creates new security risks for organisations – not least because data is frequently transferred between office-based and remote employees. Addressing technical vulnerabilities.

Compliance 119

Compliance Data breaches Privacy Risk 119

IT Governance

JULY 13, 2018

Common tactics include creating a sense of urgency, impersonating trusted brands, seeking to exploit natural curiosity and taking advantage of frequent events such as software updates. It is now more important than ever to train your staff on the risks of phishing attacks.

Phishing 66

Phishing Financial Services Education Risk 66