Amended N.Y. cyber regs up pressure on financial firms to combat risks
By 
Adrianne Appel2023-11-03T10:03:00
New York will require financial institutions to conduct risk assessments more often and improve governance under a broad update to the state’s cybersecurity regulations.
The final amended rules are intended to improve risk mitigation and enhance cyber governance within the financial sector, said Gov. Kathy Hochul on Wednesday. The update amends the state’s 2017 cybersecurity regulations, which are enforced by the New York State Department of Financial Services (NYDFS).
The NYDFS will explain the amendments to businesses through a series of seminars, Hochul said.
THIS IS MEMBERS-ONLY CONTENT
You are not logged in and do not have access to members-only content.
If you are already a registered user or a member, SIGN IN now.
Related articles
-
News BriefNYDFS offers cyber rule compliance template for small businesses
The New York State Department of Financial Services issued guidance for small businesses attempting to comply with its cybersecurity regulations.
-
News BriefNYDFS issues guidance for responding to climate-related risks
The New York State Department of Financial Services issued guidance to regulated banking and lending institutions on managing material financial and operational risks related to climate change.
-
News BriefN.Y. hospitals face stiff cybersecurity requirements under proposed rules
New York hospitals would be required to have a cybersecurity program that includes regular cyber risk assessments under newly proposed regulations.
More from Regulatory Policy
-
ArticleCompliance told to focus on reality as Euro courts brace for slew of greenwashing cases
In 2025, the regulatory focus on greenwashing intensified globally. This trend is set to accelerate in 2026, and compliance has a key part to play in ensuring corporate statements are honest.
-
ArticleSFO guidance on evaluating compliance programs short on specifics, experts say
Companies looking for greater certainty about how they might avoid criminal prosecution for bribery, fraud, and corruption offences may find they’re going to be disappointed if they’re looking for definitive answers in the latest guidance from the U.K.’s main fraud investigator, say experts.
-
ArticleEU loosens AI and data rules
Europe has been at the forefront of designing strong—but flexible—rules around data use and the safe development of AI, but the EU recently announced plans to simplify some key measures around data privacy and AI governance, which have met with mixed responses.