by John Verry | Aug 16, 2018 | InfoSec Strategies
Reading Time: 2 minutes
Entities registered with New York State’s Department of Financial Services (NYDFS) are subject to compliance with the 23 NYCRR 500 (aka “Part 500” or “NYDFS 500”) cybersecurity regulation, and a new deadline is fast approaching....
by John Verry | May 11, 2018 | Penetration Testing
Reading Time: 2 minutes
Editor’s Note: This post was originally published in September 2015 and has been updated for accuracy and comprehensiveness. For some time, CPA firms, qualified security assessors (QSAs) and similar entities that focus on...
by Richard Barrus | Sep 27, 2016 | ISO 27001 Certification, Third Party Risk Management
Reading Time: 4 minutes
While it may not yet have made a big splash outside of the state of New York or outside of financial circles, last week, the New York Department of Financial Services did something very interesting: it proposed a new law outlining...
by Richard Barrus | Mar 31, 2016 | ISO 27001 Certification
Reading Time: 3 minutes
As an ISO 27001 Certified Lead Implementer living in Atlanta, GA, I hear a lot of people talking about Financial Technology (FinTech) companies, but I don’t hear enough discussion about ISO 27001. I’d like to change that by...
by Richard Barrus | Mar 22, 2016 | ISO 27001 Certification
Reading Time: 3 minutes
As an ISO 27001 Certified Lead Implementer living in Atlanta, GA, I hear a lot of people talking about Financial Technology (FinTech) companies, but I don’t hear enough discussion about ISO 27001. I’d like to change that by...