- Chief Compliance Officer and VP of Legal Affairs, Arrow Electronics
By 
Kyle Brasseur2023-08-10T14:50:00
New York will closely monitor the cybersecurity protections in place at institutions in the financial and energy sectors as part of its first statewide cybersecurity strategy.
The strategy, released Wednesday, “provides a framework for aligning the actions and resources of both public and private New York stakeholders so that we can collectively work toward a shared vision for protecting New York,” wrote N.Y. Gov. Kathy Hochul. It includes five strategic pillars for successful implementation, one of which is focused on the regulation of critical industries.
Under that pillar is the financial sector, which is already subject to the 2017 Cybersecurity Regulation enforced by the New York State Department of Financial Services. The law has already resulted in penalties against institutions for failing to implement required controls, including a $4.25 million fine levied upon OneMain Financial Group in May.
THIS IS MEMBERS-ONLY CONTENT. To continue reading, choose one of the options below.
News and analysis for the well-informed compliance or audit exec.
Annual Membership best value
Subscribe now for $365
Our lowest price ($1 per day) for one year.
Register for free
Receive the CW newsletter and access CPE webcasts.
The U.S. Department of Energy released supply chain cybersecurity principles meant to help strengthen key technologies used to manage and operate electricity, oil, and natural gas systems.
New York hospitals would be required to have a cybersecurity program that includes regular cyber risk assessments under newly proposed regulations.
The Federal Reserve listed the proliferation of generative artificial intelligence tools among areas of emerging cybersecurity threats for banks to monitor as part of its annual resilience report.
The Environmental Protection Agency is increasing its inspections of public drinking water systems after finding a majority of those reviewed were vulnerable to cyberattacks and related threats.
Verizon’s annual data breach report shows trends in cybersecurity incidents, including more ransomware and extortion attacks last year.
UnitedHealth Group’s response to a major cyberattack in February that wreaked havoc with medical payments nationwide has been “inadequate” and must be improved immediately, a group of 22 state attorneys general told the company.
