The day has finally come: On 1 March, the New York Department of Financial Services (NYDFS) Cybersecurity Requirements was released. After months of discussion and dissemination, writing and rewriting, the Regulation has now come into effect. The 180-day transition period ends on 28 August 2017, so banks and financial institutions operating within New York State should now be starting to implement the required changes before each of the four compliance deadlines.
If you represent one of those financial institutions looking to comply with the Regulation, IT Governance is offering a pair of training courses on the NYDFS Cybersecurity Requirements. These will run alongside training for ISO 27001, the internationally recognized information security management system.
Benefits of implementing ISO 27001 alongside the NYDFS Regulation
The NYDFS proposal was at times called extreme, but much of the Regulation simply sets the same foundational cybersecurity requirements that can be found in existing guidelines such as ISO 27001.
For instance, the Regulation calls for the implementation and maintenance of a written cybersecurity policy that addresses a wide range of areas such as information security, data governance, vendor management, customer data privacy and incident response. As FICO notes, these requirements are consistent with ISO 27001 standards and leading industry practices.
Certification to ISO 27001 has seen a steep increase in the US over the past few years, and working with ISO 27001 will provide proven pathway to cybersecurity. It takes a risk-based approach to information security that encompasses people, processes, and technology, and can be employed by organizations of all sizes, sectors, and locations.
IT Governance Live Online course will prepare you for the NYDFS Regulation
We will be providing two courses to help organizations comply with the Regulation:
New York DFS Cybersecurity & ISO 27001 Certified ISMS Foundation course
In this one-day course, an experienced ISO 27001 trainer and consultant will:
- Help you understand the benefits of ISO 27001 best practice and certification
- Summarize primary risks associated with cyber crime
- Explain how ISO 27001 aligns with the measures mandated by the NYDFS Cybersecurity Requirements
New York DFS Cybersecurity & ISO 27001 Certified ISMS Lead Implementer course
Achieve the Certified ISMS Lead Implementer (CIS LI) qualification (ISO 17024-accredited) with this three-day course. An online exam is included in course.
An experienced ISO 27001 trainer and consultant will guide you through:
- The nine steps to ISO 27001 success
- Developing the skills required to achieve ISO 27001 compliance
- Ensuring your ISO 27001 project aligns with the NYDFS Cybersecurity Requirements
Not familiar with the NYDFS Cybersecurity Requirements?
Learn more here >>