Tabs

Bank/Thrift Supervision   |    Capital    |    CFPB    |    Deposit Insurance    |    Interchange    |    Mortgage Finance
Municipal Advisors   |    OCC-OTS Merger   |    Preemption    |    QM - QRM    |    Swaps   |    Volcker Rule    |    Full Topics List
 
Qualified Mortgage - Qualified Residential Mortgage
Swaps
Consumer Financial Protection Bureau - CFPB
Bank/Thrift Holding Company Supervision
Capital
Deposit Insurance
Interchange
Mortgage Finance
Municipal Advisors
OCC-OTS Merger
Preemption
Volcker Rule
Corporate Governance
Financial Stability Oversight Council (FSOC)
Appraisals
Office of Financial Research (OFR)
Systemic Risk
Supervision and Oversight
Payment, Clearing and Settlement
Prudential Supervision
Trust & Securities
Asset-Backed Securities
Resolution Authority

Wednesday, September 14, 2016

N.Y. Regulator Proposes New Cyber Regulations

New York’s Department of Financial Services has issued a new set of regulations on cybersecurity, the first of its kind from a state regulator. All state-chartered, FDIC-insured banks are supervised for cybersecurity at the federal level, but state-level New York actions can set precedents for other state regulators.

Under the proposed rules, New York-chartered financial institutions would be required to: establish a cybersecurity program; adopt a written cybersecurity policy; designate a chief information security officer; and have policies and procedures to ensure the security of information systems and private information accessible to, or held by, third-parties. Additional requirements would include annual penetration testing, periodic reviews of access privileges, annual risk assessments and multi-factor authentication for accessing internal systems, among others.

If finalized, the rule would take effect Jan. 1, 2017, and compliance would be required 180 days later. Comments are due by Oct. 28.

Read the proposed rule.

No comments:

Post a Comment

Please read our comment policy before making a comment.