Lance Taubin

Lance Taubin

Alston & Bird

Contact

Readers' Choice Awards

Cybersecurity
View Bio
RSS

Latest Posts › NYDFS

Share:

Additional Cybersecurity Requirements of NYDFS Part 500 Take Effect

On May 1, 2025, additional enhanced cybersecurity controls required by the Second Amendment to the New York Department of Financial Services (NYDFS) Cybersecurity Regulation (23 NYCRR Part 500) (the “Second Amendment”) take...more

5/5/2025  /  Compliance Dates , Covered Entities , Cybersecurity , Data Security , Financial Services Industry , New Regulations , NYDFS , Regulatory Requirements , Risk Management , Vulnerability Assessments

Cybersecurity Controls: What Do Regulators Expect Nowadays?

Our Privacy, Cyber & Data Strategy Team highlights the increasingly specific cybersecurity controls identified by regulators, explains why these enhanced cybersecurity controls have become the focus of regulators, and shares...more

4/18/2025  /  Cybersecurity , Data Security , Employee Training , Enforcement Actions , Multi-Factor Authentication , NYDFS , Regulatory Requirements , Risk Management

NYDFS Issues Guidance on Artificial Intelligence-related Cybersecurity Risks

On October 16, 2024, the New York Department of Financial Services (“NYDFS”) issued an industry letter covering Cybersecurity Risks Arising from Artificial Intelligence and Strategies to Combat Related Risks (the “Industry...more

10/18/2024  /  Artificial Intelligence , Cyber Attacks , Cyber Threats , Cybersecurity , Data Protection , Financial Services Industry , NYDFS , Regulatory Oversight , Risk Management

NYDFS Issues Final Circular Letter Guidance on Use of AI in Insurance Underwriting and Pricing

On July 11, 2024, the New York Department of Financial Services (“NYDFS”) released Insurance Circular Letter No. 7, which establishes guidelines on the use of artificial intelligence systems (“AIS”) and external consumer data...more

8/12/2024  /  Anti-Discrimination Policies , Artificial Intelligence , Discrimination , Enforcement Priorities , Insurance Industry , NYDFS , Pricing , Regulatory Oversight , Risk Management , Transparency , Underwriting , Vendor Contacts

Board Oversight and Cyber Breach Response: What Involvement Strikes the Right Balance?

New regulations continue to push boards in the direction of active engagement in their cyber oversight role, including breach response. But, how can boards strike the right balance in their oversight role during a significant...more

4/10/2024  /  Compliance , Cyber Attacks , Cyber Incident Reporting , Cybersecurity , Data Breach , Incident Response Plans , NYDFS , Regulatory Oversight , Risk Management , Securities and Exchange Commission (SEC)

Top 10 Issues General Counsel Need to Know About Ransomware in 2024

Threat actors are evolving. Our Privacy, Cyber & Data Strategy Team explains how ransomware gangs have changed their tactics and how companies can respond to the threat while navigating new scrutiny from investors and...more

2/26/2024  /  Corporate Counsel , Cyber Attacks , Cyber Crimes , Cyber Threats , Cybersecurity , Data Breach , Data Protection , Data Security , Data Theft , NYDFS , Popular , Ransomware , Reporting Requirements , Risk Management , Securities and Exchange Commission (SEC)

NYDFS Releases Circular Letter on Use of AI in Insurance Underwriting and Pricing

On January 17, 2024, the New York State Department of Financial Services (“NYDFS”) issued a proposed circular letter for comment regarding the “Use of Artificial Intelligence Systems and External Consumer Data and Information...more

2/2/2024  /  Algorithms , Artificial Intelligence , Consumer Financial Protection Bureau (CFPB) , Insurance Industry , NYDFS , Risk Management , Underwriting

NYDFS Releases Industry Letter on the Use of Self-Service Password Reset Feature

On January 12, 2024, the New York State Department of Financial Services (“NYDFS”) released a new Industry Letter on the use of self-service password reset (“SSPR”) services, which enable users to reset their own password...more

1/24/2024  /  Cybersecurity , Financial Services Industry , NYDFS , Passwords , Risk Management

NYDFS Releases Consent Order in First Enforcement Action Brought Under the Cybersecurity Regulations

After a three-year investigation/enforcement action by the New York Department of Financial Services (“NYDFS”), NYDFS entered into a Consent Order with a large title insurer (the “Company”) for its violation of NYDFS’s...more

12/19/2023  /  Cybersecurity , Data Security , Enforcement Actions , Financial Services Industry , NYDFS , Popular

NYDFS Finalizes Second Amendment to Its Cybersecurity Regulation

Our Privacy, Cyber & Data Strategy and Privacy & Cybersecurity Litigation teams examine the New York Department of Financial Services’ finalized Second Amendment to its Cybersecurity Regulation....more

11/10/2023  /  Compliance , Cybersecurity , Financial Institutions , Financial Services Industry , Notice Requirements , NYDFS , Popular

NY DFS Releases Revised Proposed Second Amendment of its Cybersecurity Regulation

The New York Department of Financial Services (“NY DFS”) published an updated proposed Second Amendment to its Cybersecurity Regulation (23 NYCRR Part 500) in the New York State Register on June 28, 2023, updating its...more

7/12/2023  /  Cybersecurity , Data Protection , Financial Services Industry , NYDFS , Popular , Risk Assessment

NYDFS Penalizes bitFlyer $1.2 Million for Violations to Cybersecurity Regulation

On May 1, 2023, bitFlyer USA, Inc. (“bitFlyer”) entered into a Consent Order with the New York Department of Financial Services (“DFS”) for multiple deficiencies in bitFlyer’s cybersecurity program, most notably for failure...more

5/15/2023  /  Cryptocurrency , Cybersecurity , Enforcement Actions , NYDFS , Popular , Risk Assessment

NYDFS Releases Significant Enhancements to its Cybersecurity Regulation in the Proposed Second Amendment

The New York Department of Financial Services (“DFS”) released their proposed second amendment to the Cybersecurity Regulation, 23 NYCRR Part 500 (“Proposed Second Amendment”) on October 9, 2022....more

11/22/2022  /  Asset Management , Cybersecurity , Data Protection , Data Retention , Financial Institutions , Financial Services Industry , NYDFS , Popular

NYDFS Announces Significant Cybersecurity Settlement with EyeMed Vision Care

On October 18, 2022, EyeMed Vision Care LLC (“EyeMed”) entered into a Consent Order with the New York Department of Financial Services (“DFS”) relating to a cybersecurity event from 2020 that exposed consumer nonpublic...more

10/26/2022  /  Consent Order , Cybersecurity , Data Breach , NYDFS , Popular , Settlement

CSBS Releases Cybersecurity Programs to Help Nonbank Financial Services Institutions Improve Cybersecurity Posture

On August 9, 2022, the Conference of State Bank Supervisors (CSBS) released two cybersecurity tools for nonbank financial services institutions to help prepare for state cybersecurity exams and, ultimately, improve...more

9/29/2022  /  CSBS , Cybersecurity , Financial Institutions , Financial Services Industry , NYDFS , Popular

NYDFS Issues Guidance on Cybersecurity Controls to Combat Ransomware and Clarifies Reporting Obligations

The New York Department of Financial Services (NYDFS) issued new guidance this week intended to assist organizations in thwarting ransomware attacks. The guidance clarifies the NYDFS’ expectation that NYDFS-regulated...more

7/6/2021  /  Cyber Attacks , Cybersecurity , Data Protection , Financial Services Industry , NYDFS , Popular , Ransomware , Reporting Requirements , Risk Management
16 Results
 / 
View per page
Page: of 1

"My best business intelligence, in one easy email…"

Your first step to building a free, personalized, morning email brief covering pertinent authors and topics on JD Supra:
Sign up Log in
*By using the service, you signify your acceptance of JD Supra's Privacy Policy.
- hide
- hide