Takeaways from NYDFS ransomware guidance
By 
Jaclyn Jaeger2021-07-06T16:41:00
The New York State Department of Financial Services has issued guidance for regulated entities describing best practices for reducing the risk of a ransomware attack.
THIS IS MEMBERS-ONLY CONTENT
You are not logged in and do not have access to members-only content.
If you are already a registered user or a member, SIGN IN now.
Related articles
-
ArticleNYDFS guidance addresses common MFA problems—and how to fix them
The New York State Department of Financial Services outlined common vulnerabilities in multi-factor authentication and how to address them from a cybersecurity risk management standpoint.
-
ArticleRule requires banks report significant ‘computer-security incidents’ within 36 hours
Federal banking regulators issued a rule that requires financial institutions to notify their regulator within 36 hours of a “computer-security incident” that materially affects their operation, ability to deliver services, or the stability of the financial sector.
-
ArticleAdrienne Harris nominated to lead NYDFS
The new head of New York’s Department of Financial Services is expected to be Adrienne Harris, who was nominated to the post by Gov. Kathy Hochul.
More from Cybersecurity
-
ArticleRetail energy compliance must focus on resilience and reporting
Cybercrime and national critical infrastructure responsibilities are key concerns for retail energy sector compliance. Resilience is vital for companies that keep the lights on and power financial institutions and hospitals.
-
News BriefU.K. says company boards need to worry more about cybersecurity risks
The U.K. government wants directors and boards of directors to become more actively involved in cybersecurity risks facing public and private companies, as the world faces “alarming” threats from criminal gangs and malicious nation-states. Though many organizations take cybersecurity seriously, the U.K. government says they do not place management of ...
-
PremiumNavigating compliance: A guide for small teams to tackle CMMC
Many small organizations within the Defense Industrial Base are struggling to meet the rigorous requirements validated through the Cybersecurity Maturity Model Certification, writes Thomas Graham, CISO at Redspin. If you haven’t been tracking it closely, CMMC was finalized in October, with an effective date of December 16, 2024.