Prior articles in the cyber series have concentrated on what it means to be a covered entity. This article transitions into a discussion about what covered entities must do to be in compliance with New York state’s cybersecurity regulation (23 NYCRR 500). This...
When New York state’s cyber security regulation (23 NYCRR 500) was amended at the end of 2023, it included the creation of a new type of covered entity referred to as Class A companies. Due to their size, these companies are required to go above and beyond what...
Technology has become a key player in the stability and success of modern small businesses. New technologies provide business owners with opportunities to boost growth and overcome obstacles. These tools are critical to enhancing an organization’s financial...
Building on our previous exploration of “covered entities” under New York’s cyber security regulation (23 NYCRR 500), this article delves into another critical aspect: the limited exemption for covered entities. The limited exemption underwent significant changes...
In the rapidly evolving digital landscape, cybersecurity is more crucial than ever. This is particularly true in New York, where the state's cyber security regulation, 23 NYCRR 500, plays a pivotal role. In part two of the PIA’s cyber series, let's delve into a key...
The New York Department of Financial Services cyber security regulation—known as 23 NYCRR 500 by nerds like me—first went into effect on March 1, 2017. This regulation was the first in the nation to regulate the cyber security practices of the financial services...
The New York State Department of Financial Services released its official second amendment to the cyber security regulation (23 NYCRR 500) on Nov. 1, 2023. The amendment makes multi-factor authentication mandatory for all covered entities, increases the thresholds for...
As the insurance sector continues to embrace technological advancements, it finds itself at the crossroads of leveraging digital solutions and confronting associated cyberthreats. Insurance agencies and companies hold vast amounts of sensitive information, from...
According to Statista, a data gathering platform, X, formerly known as Twitter, has some 556 million monthly active users. Whether you’re an independent agent or the head of an agency, having a presence on a platform with more than half a billion active users is...
The New York State Department of Financial Services published a revised proposed second amendment to 23 NYCRR 500—colloquially referred to as New York’s cyber security regulation. The publication of the revised second amendment comes over six months after the...