Blog - cybersecurity

Cyber Threats and Risk Amplification

As organizations operationalize the latest SEC cyber event reporting obligations, the time is ripe to discuss not only how cyber events are reported, but who owns cyber risk, and how collaboration can reduce organizational risk.

NYDFS Bolsters Cybersecurity Requirements

Effective November 1, 2023, the Part 500 amendment to the NYDFS Cybersecurity Regulation (23 NYCRR 500) is a new set of cybersecurity requirements for all covered financial institutions. The NYDFS bolsters cybersecurity requirements through a series of changes that address both the advancements of the cybersecurity threat landscape as well as increased opportunities for organizations to protect themselves.

SEC Cybersecurity Disclosure Rule

Effective on or after December 18, 2023, SEC regulators are requesting clear, documented evidence of how companies conduct cybersecurity materiality assessments and they’re leaving it up to each organization to define for themselves what constitutes material harm and which incidents rise to the level of disclosure.

Building a Collaborative Risk Management Framework 

As new cyber regulations amass with similarities to privacy laws, cyber and privacy teams are asking how they can best align, be productive, and serve their organizations and constituents.

In a special session of The Privacy Collective, cybersecurity expert, Edna Conway, discussed the overlap of cyber and privacy regulations and how teams can work together to build a collaborative risk management framework.

Cyber and Privacy Regulation Convergence: Tips to Pave a Path Forward

With individual models for analysis, consumer thresholds, and overlapping jurisdictional applications, the key to managing compliance with emerging Cyber regulation may lie within the Privacy playbook. Read the industry trend report to learn more.

Cybersecurity Awareness Month: How Privacy and Security Can Work Together

If you’ve been keeping up with us on social media, you know it’s Cybersecurity Awareness Month. We’ve shared great tips all month long on how to protect yourself and your business while online. To close out the month of October, we’d like to offer some final advice to privacy and security teams while they work together to thwart and respond to cybercrimes, while safeguarding brand trust.