| 1 minute read

NYDFS Amendment to Cybersecurity Regulation

nys dfs seal

Avalon previously reported on proposed changes that may have a significant impact on the current 23 NYCRR Part 500 – Cybersecurity Requirements for Financial Services Companies (the Cybersecurity Regulation or Part 500) released by the New York State Department of Financial Services (NYSDFS). 

Part 500, a regulation establishing cybersecurity requirements for financial services companies, was declared by the Superintendent of Financial Services, and has been in place since March 2017.

Since adoption, the cybersecurity landscape has changed, and attacks have become more sophisticated and more expensive. There are many additional controls to help mitigate these threats that should be implemented by organizations to help protect themselves and, as such, on November 1, 2023, Part 500 was amended to help align with these changes and push for better security for financial services companies.

Please go to https://www.dfs.ny.gov/industry_guidance/cybersecurity for more information on the updates and related resources including available training sessions and implementation timelines for small businesses, Class A businesses, and covered entities.

Avalon can assist your organization with staying or becoming compliant through many of our services, including vCISO, vendor management, policy creation, and risk assessment.

Blog Articles

An Interview with Chuck Pindell

As Avalon’s Managing Director of Managed Review, Chuck brings something rare to the table: The operational rigor of a military background, the strategic instincts of someone who has navigated some of the most complex reviews in the country, and a genuine belief that the people on both sides of the table matter as much as the technology behind them.

Avalon Expands Commitment to Channel Partners

Avalon is deepening its investment in channel partnerships to help legal service providers – including litigation support vendors, eDiscovery platforms, and law firm service divisions – access scalable, complementary litigation support solutions. Through these strategic relationships, organizations can diversify their offerings with services such as managed document review, digital forensics, and legal paper solutions, allowing them to better serve clients while maintaining focus on their core business.

Why Managed Document Review is Becoming Essential for Small Legal Teams

For years, document review was viewed as a task that legal teams handled internally. Associates, paralegals, contract attorneys, and in-house counsel would absorb the work, often alongside their existing responsibilities. But as data volumes continue to grow and legal matters become more complex, that approach is becoming increasingly difficult to sustain.