Amended N.Y. cyber regs up pressure on financial firms to combat risks

By Adrianne Appel2023-11-03T10:03:00

New York will require financial institutions to conduct risk assessments more often and improve governance under a broad update to the state’s cybersecurity regulations.

The final amended rules are intended to improve risk mitigation and enhance cyber governance within the financial sector, said Gov. Kathy Hochul on Wednesday. The update amends the state’s 2017 cybersecurity regulations, which are enforced by the New York State Department of Financial Services (NYDFS).

The NYDFS will explain the amendments to businesses through a series of seminars, Hochul said.

THIS IS MEMBERS-ONLY CONTENT

JOIN NOW

You are not logged in and do not have access to members-only content.

If you are already a registered user or a member, SIGN IN now.

News Brief
NYDFS offers cyber rule compliance template for small businesses

2024-05-14T16:59:00Z By Aaron Nicodemus

The New York State Department of Financial Services issued guidance for small businesses attempting to comply with its cybersecurity regulations.
News Brief
NYDFS issues guidance for responding to climate-related risks

2023-12-28T16:28:00Z By Aaron Nicodemus

The New York State Department of Financial Services issued guidance to regulated banking and lending institutions on managing material financial and operational risks related to climate change.
News Brief
N.Y. hospitals face stiff cybersecurity requirements under proposed rules

2023-11-15T21:09:00Z By Adrianne Appel

New York hospitals would be required to have a cybersecurity program that includes regular cyber risk assessments under newly proposed regulations.

More from Regulatory Policy

Article
Navigate SEC cautiously during shutdown, experts advise

2025-10-31T17:50:00Z By Adrianne Appel

The U.S. government shutdown has brought most operations at the Securities and Exchange Commission (SEC) to a screeching halt, but that doesn’t mean compliance teams should be taking a breather, experts advised.
Article
Complying with the EU Data Act – What companies should know

2025-10-30T19:39:00Z By Neil Hodge

Companies could face significant compliance challenges in trying to meet new EU legal requirements about how companies share data with third parties.
Article
California climate rules cause uncertainty as CARB delays draft guidance

2025-10-27T20:16:00Z By Adrianne Appel

California has delayed the release of draft greenhouse gas reporting rules for businesses until early 2026, the California Air Resources Board said.

Amended N.Y. cyber regs up pressure on financial firms to combat risks

THIS IS MEMBERS-ONLY CONTENT

Related articles

NYDFS offers cyber rule compliance template for small businesses

NYDFS issues guidance for responding to climate-related risks

N.Y. hospitals face stiff cybersecurity requirements under proposed rules

More from Regulatory Policy

Navigate SEC cautiously during shutdown, experts advise

Complying with the EU Data Act – What companies should know

California climate rules cause uncertainty as CARB delays draft guidance