Wednesday, April 19th from 12:00pm to 1:00pm EST
On December 28th 2016, the State of New York issued a revised regulation on its Cybersecurity Requirements for Financial Services Companies (23 NYCRR 500). The regulation was revised and republished by the New York State Department of Financial Services (DFS) after receiving significant comments from the financial services industry.
In addition to requiring that each covered entity have a cybersecurity program and a Chief Information Security Officer (CISO), the regulation places significant additional requirements in the areas of: access controls, asset management, data governance, software development practices, third party risk assessment, and other proscribed areas.
Particularly compelling is the requirement that covered entities must provide an annual certification of their compliance with the regulation beginning as early as February 15, 2018 for many of its sections.
Prevalent recently hosted a webinar on this topic with American Banker to a large audience that had many questions pertaining to specific requirements as well as timelines for compliance. We were not able to address all of the questions asked in that webinar, so we decided to host a follow-up session that will answer these as well as provide attendees the opportunity to ask additional questions that we did not cover.
Join Prevalent’s Brad Keller as he walks you through 23 NYCRR 500 and answers your questions about this set of new regulations impacting organizations in the state of NY.