This regulation sets cybersecurity requirements for financial service entities that operate in New York State. With malicious actors using increasingly sophisticated attempts to breach systems and seize data, the amount of cybersecurity regulations will continue to snowball.
Access Controls are the most basic and critical best-practice to get right for cybersecurity. These are required by just about every cybersecurity regulation for good reason. If a malicious actor gets domain admin privileges, your network is toast. Digital Identity Guidelines (NIST SP 800-63) were published in June 2017. These essentially break down the digital […]