New York State Department of Financial Services (NYS DFS)
Compliance Overview

If you are a bank, insurance company, or financial services provider, you have heard of 23 NYCRR 500. This cybersecurity regulation was designed to protect your customers’ information. by putting a framework and program in place. – to address rules for data security, conducting risk assessments, vulnerability scans, and documenting security policies and procedures.  

Whether you outsource or insource, a Chief Information Security Officer (CISO) is critical for getting your security program up and running and staying in compliance.   

Build a Framework: 

  • Written Policies and Procedures 
  • Penetration testing & Vulnerability Scans 
  • Awareness Training 
  • Monitoring & Testing 
  • Business Continuity  
  • Risk Assessment  
  • Incidence Response Plan 

Create a Compliance Strategy: 

  • Put the Right People in Place  
  • Understand the Regulations and Requirements  
  • Prepare for Audits 
  • Adopt New Technology 

Achieving and maintaining cybersecurity compliance is a complicated process but it doesn’t have to be a difficult one. M.A. Polce’s cybersecurity team can help you fulfill your compliance obligations and stay ahead of the game.  

Fill out this online form to find out how your business can stay compliant with NYS DFS requirements. 

Get Started!