NY DFS Cyber Regulation Webinar: Table Stakes for Compliance
New York Department of Financial Services Cyber Webinar: Table Stakes for Compliance
Two Industry Thought Leaders: Chip Block, Vice President of Evolver, and Rick Borden, Counsel of Robinson+Cole come together for this much needed and urgent legal and technical discussion for business executives. Together, they will review the NY DFS Cyber Regulation that went into effect March 1, 2017. [Did you miss the webinar? Watch the recording.]
Highlights of the webinar will include:
- Details on the final NYDFS Cyber regulation
- Special emphasis on cyber risk assessment and compliance
- How the cyber regulation will shape your policies and procedures
- Three phases for compliance
- Tools to use during the process for information governance and cyber risk quantification
RSVP for the NY DFS Cyber Regulation 2017 Webinar, or click here to read more information on the Evolver website.
Key elements of the regulation include:
- CEOs and Boards of Directors will be responsible for certifying compliance for cybersecurity
- Focus is on integrity and availability of data
- This is process based vs. outcome based
- Cyber insurance may not cover fines/penalties for non-compliance
This webinar is best suited for members of the C-Suite, including CEO, CISO, CTO, CRO and CFOs. Members of the IT department as well as the risk management department will benefit from attending, as well as the person in the organization who is in charge of contracts and managing vendors.
The New York Department of Financial Services supervises over 2000 organizations ranging from banks, private equity, insurance, investment brokers and more.
As stated in the regulation on the NYDFS website:
“Given the seriousness of the issue and the risk to all regulated entities, certain regulatory minimum standards are warranted, while not being overly prescriptive so that cybersecurity programs can match the relevant risks and keep pace with technological advances. Accordingly, this regulation is designed to promote the protection of customer information as well as the information technology systems of regulated entities. This regulation requires each company to assess its specific risk profile and design a program that addresses its risks in a robust fashion. Senior management must take this issue seriously and be responsible for the organization’s cybersecurity program and file an annual certification confirming compliance with these regulations. A regulated entity’s cybersecurity program must ensure the safety and soundness of the institution and protect its customers.”
To find out more about the new cyber regulation and how it affects your organization, click here.