Posted on March 27, 2025 | 1 minute read

2025 New York Department of Financial Services (NYDFS) Reporting Reminder

New York State seal

The team at Avalon just wanted to remind you that the New York Department of Financial Services (NYDFS) cybersecurity regulation deadline is fast approaching. As part of NY DFS Cybersecurity Regulation 23 NYCRR 500, companies regulated by NYDFS are required to complete and file their annual cybersecurity compliance certification with the department.

Deadline: The filing deadline for the Notice of Compliance is April 15, 2025.

Key points to remember:

  • Ensure your cybersecurity program complies with the requirements outlined in 23 NYCRR 500.
  • If you are not fully compliant with each section, you are still required to submit a notice of material non-compliance with associated remediation timelines.
  • Complete and file the Notice of Compliance by the deadline.
  • Review your risk assessments, incident response plans, and cybersecurity policies to ensure they are up to date.

Please take action promptly to avoid penalties and ensure full compliance. If you need assistance or have questions regarding the filing process, contact the experts at Avalon today.

Blog Articles

The Cost of Cyberattacks: Financial & Reputational Risks for Law Firms

The Cost of Cyberattacks: Financial & Reputational Risks for Law Firms

When attorneys think about cyberattacks, they often focus on the immediate crisis – encrypted files, compromised credentials, ransomware demands, or stolen client data. Yet the true impact of a law firm data breach extends far beyond the initial incident. Cybersecurity threats create a dual risk: 1) significant financial losses from downtime, recovery costs, regulatory exposure, and 2) potential malpractice claims, along with long-term reputational damage that can erode client trust, harm brand credibility, and affect future business development.

Read More
The Top 10 Cyber Gaps We See in Law Firms

The Top 10 Cyber Gaps We See in Law Firms

Law firms and in-house legal departments possess some of the most sensitive and valuable data anywhere – from personally identifiable information (PII) and corporate deal terms to litigation strategies and privileged communications. This makes the legal sector a particularly attractive target for cybercriminals. Yet, across countless engagements, Avalon’s cyber experts continue to see recurring cybersecurity gaps in legal organizations of every size.

Read More
Employee Spotlight: Sarah Faherty

Employee Spotlight: Sarah Faherty

Every once in a while, we like to show off one of our hard-working, detail-oriented problem solvers. Take a moment to see who's in the spotlight today!

Read More
Achieve more, every day, by shifting a variety of critical business functions – eDiscovery, digital forensics, managed review and staff augmentation, legal document solutions, and cybersecurity – to the experts at Avalon.
 
Visit our paper services website at teamavalondocs.com
 

Solutions

Company

Knowledge Center

©2026 Surge Avalon Holdings. All rights reserved.