The March 1 Deadline for NY DFS Cyber Compliance: One Week to Go!

Theodore Augustinos
Locke Lord LLP
Contact
LinkedIn
Facebook
X
Send
Embed

As we reported, March 1, 2018 brings a new transition date, with a new set of compliance obligations for Covered Entities subject to the Cybersecurity Regulation of the New York Department of Financial Services.  By March 1, Covered Entities will need to have complied with the Risk Assessment requirement.  Covered Entities other than those subject to the limited exemptions will also have to satisfy the requirements for (i) the annual report by the CISO to the Board, (ii) penetration testing and vulnerability assessment, (iii) multi-factor authentication, and (iii) cybersecurity awareness training of all personnel.

Be sure to have these covered by March 1 so you’ll be in a position to file your next Annual Compliance Certificate by February 15, 2019.

And don’t forget, after March 1, the next transition date will be September 3, 2018, when most of the remaining requirements are due, as outlined in the article linked above.  It’ll be here sooner than you think!

Send Print Report

DISCLAIMER: Because of the generality of this update, the information provided herein may not be applicable in all situations and should not be acted upon without specific legal advice based on particular situations.

© Locke Lord LLP | Attorney Advertising

Written by:

Locke Lord LLP
Locke Lord LLP
Contact
more
less

PUBLISH YOUR CONTENT ON JD SUPRA NOW

  • Increased visibility
  • Actionable analytics
  • Ongoing guidance

Locke Lord LLP on:

Reporters on Deadline

"My best business intelligence, in one easy email…"

Your first step to building a free, personalized, morning email brief covering pertinent authors and topics on JD Supra:
Sign Up Log in
*By using the service, you signify your acceptance of JD Supra's Privacy Policy.
Custom Email Digest
- hide
- hide