Eight years ago, on March 1, 2017, the New York Department of Financial Services enacted its landmark cybersecurity regulation covering financial services companies, 23 NYCRR Part 500, known as “Part 500.” Part 500 was the first state regulation to enumerate, in great detail, the elements of a cybersecurity program that a covered financial service company in New York is required to implement. Since that time, the focus of state cybersecurity legislation has been directed largely at insurance…
By: Alston & Bird
By: Alston & Bird
