Device Hardening and Continuous Compliance Monitoring CONTINUOUS COMPLIANCE

On Tuesday, the New York State Financial Services regulator announced details about new cyber security guidelines for banks & insurance companies under its jurisdiction.

This announcement came just after the indictment against the three individuals connect to the 2014 JPMorgan hacking incident which affected over 83 million households. Gery Shalon, Joshua Samuel Aaron, and Ziv Orenstein are among the individuals indicted for pulling off the largest theft of customer data from a US financial institution in history.

These new regulations would require firms to appoint a Chief Information Security Officer as well as implement a new multi-layered process for allowing employees and customers’ access into their systems.

Details of this new plan were mentioned in a letter sent by the New York State Department of Financial Services in hopes to help strengthen the financial industry’s cyber security backbone.

The NYDFS regulations would also require firms to adopt cyber security policies and procedures among twelve areas including information security, data governance & classification, customer data privacy, vendor & third party service provider management and many more. If approved, these regulations would also require all entities to immediately notify the Department of any cyber security incident that takes place.

As of now, the proposed regulations are not concrete and are still up for debate, but this does not mean that financial institutions have any more time to waste regarding poor cyber security procedures. As the financial industry continues to be a prime target for attacks, it’s important that these institutions realize that they could very well be the next firm to suffer a devastating data breach if not taking this issue seriously.

If organizations want to maintain security and minimize the likelihood of a financial fallout from these cyber-attacks, they need to realize the likelihood of stopping all breaches is unlikely, but a preventative approach can be the best way to stop them. NNT Change Tracker Gen7 provides organizations with Non-stop, continuous visibility of what’s going on in your IT environment, allowing an organization to at least spot unusual change that represent a breach in real time and take action before any damage is done.



Read more about Change Tracker Gen7

Read the letter from the NYDFS

Read the article on CSO Online

Share this blog post

USA Offices
New Net Technologies Ltd
9128 Strada Place
Naples, Florida, 34108
201 17th Street, Suite 300
Atlanta, Georgia, 30363.

Tel: 1-888-898-0674
NNT Logo
UK Office
New Net Technologies Ltd
Spectrum House, Dunstable Road
St Albans


Tel: 08456 585 005
Fax: 08456 122 031
Connect with NNT
Google+ Linkedin Twitter - Change Tracker Facebook rss feed YouTube
Sign up to NNT's IT security and compliance monthly newsletter. Get breaking security news, how-to tips, trends and commentary direct to your inbox.