2023 Updates to NYDFS Cybersecurity Regulation for Financial Institutions
Effective November 2023, the New York Department of Financial Services has amended the NYDFS Cybersecurity Regulation (23 NYCRR 500), setting enhanced cybersecurity benchmarks for financial institutions.
This update builds upon the original, landmark regulations from 2017. At that time, the regulations mandated detailed rules for cyber risk assessment, attack detection, enhanced protection implementation, and recovery planning. They also required financial ...
