• Register
Return to: Home > News > New York announces new cybersecurity regulations

New York announces new cybersecurity regulations

New York governor Andrew Cuomo has announced a cybersecurity regulation that will protect consumer data and financial systems from terrorist organisations and other cyber criminals.

The final risk-based regulation, which is set to take effect on 1 March 2017, will require banks, insurance firms, and other financial services institutions regulated by the Department of Financial Services to take on a cybersecurity programme developed to protect consumers’ private data.

It will also require financial institution to have a programme that is adequately funded and staffed, overseen by qualified management, and reported on periodically to the senior governing body of the organisation.

Financial institutions will have to maintain risk-based minimum standards for technology systems, such as access controls, data protection including encryption, and penetration testing.

The rule requires identification and documentation of material deficiencies, remediation plans and annual certifications of regulatory compliance.

Commenting on the regulation, Cuomo said: "New York is the financial capital of the world, and it is critical that we do everything in our power to protect consumers and our financial system from the ever increasing threat of cyber-attacks. These strong, first-in-the-nation protections will help ensure this industry has the necessary safeguards in place in order to protect themselves and the New Yorkers they serve from the serious economic harm caused by these devastating cyber-crimes."

New York State department of financial services superintendent Maria Vullo said, “With this landmark regulation, DFS is ensuring that New York consumers can trust that their financial institutions have protocols in place to protect the security and privacy of their sensitive personal information.

“As our global financial network becomes even more interconnected and entities around the world increasingly suffer information breaches, New York is leading the charge to combat the ever-increasing risk of cyber-attacks.”

Top Content

  • RBC net income rises 9% in Q2

    Royal Bank of Canada (RBC) has reported a net income of CAD2.81bn for the second quarter of 2017, up 9% from CAD2.57bn in the same quarter of the previous year.

    read more
  • CIBC retail and business banking unit net income dips in Q2

    The retail and business banking arm of Canadian Imperial Bank of Commerce (CIBC) posted net income of CAD647m for the second quarter of 2017, a fall of 1% compared to CAD652m in the same period last year.

    read more
  • TD Bank Canadian retail unit net income rises 7% in Q2

    TD Bank Group's Canadian retail unit has reported net income of CAD1.57bn for the second quarter of 2017, up 7% from CAD1.46bn in the corresponding quarter of the previous year.

    read more
  • Dubai to grant temporary financial services licence to fintech firms

    Dubai Financial Services Authority (DFSA) has decided to allow fintech firms to apply for a restricted financial services license to foster innovation in Dubai.

    read more
  • Archover secures full FCA authorisation

    ArchOver, a P2P business lending platform in the UK, has received full authorisation from Financial Conduct Authority’s (FCA) to function as P2P lending platform.

    read more
Privacy Policy

We have updated our privacy policy. In the latest update it explains what cookies are and how we use them on our site. To learn more about cookies and their benefits, please view our privacy policy. Please be aware that parts of this site will not function correctly if you disable cookies. By continuing to use this site, you consent to our use of cookies in accordance with our privacy policy unless you have disabled them.