With less than four weeks to comply with 23 NYCRR 500, the NYDFS Cybersecurity Requirements, it can be hard to know where to start. However, it is essential to take the right steps now to plan your cybersecurity program and align it with your business objectives.
You can meet your obligations and deadlines with ISO 27001, the international standard outlining the specification for a best-practice ISMS (information security management system). The Standard is an effective way to meet the 23 NYCRR 500 requirements, protect and monitor information, and implement continual improvement processes, helping your organization keep up with ever-evolving cyber threats.
Why ISO 27001?
- ISO 27001 provides a holistic approach to creating an ISMS that encompasses people, processes, and technology
- Regular risk assessments ensure that threats are identified and treated in an appropriate manner, in line with your organization’s risk appetite
- ISO 27001’s controls cover all sections of the NYDFS Cybersecurity Requirements, and provide additional security measures to strengthen your ISMS while supporting business objectives
Free green papers on the NYDFS cybersecurity requirements and ISO 27001
If you would like more information about implementing ISO 27001 to meet the NYDFS cybersecurity requirements’ deadlines, download our free green papers: NYDFS Cybersecurity Requirements – Part 1: The Regulation and the ISO 27001 standard and NYDFS Cybersecurity Requirements – Part 2: Mapped alignment with ISO 27001.