Financial Services, Government and Training - Information Management Today

NYDFS releases major update to Part 500 cybersecurity requirements for financial services companies

Data Protection Report

NOVEMBER 8, 2023

On November 1, 2023, the New York Department of Financial Services (“NYDFS”) released the finalized amendments of Part 500 of its cybersecurity regulations. The Amendment also includes new governance requirements and responsibilities applicable to the CISO of all covered entities.

Financial Services

Financial Services Cybersecurity Compliance Government

Capital Markets, AI, and the need for governance

Collibra

OCTOBER 31, 2023

With every financial services organization focused on making better and faster decisions, data professional and business leaders are eager to better understand how AI can facilitate their strategic goals. Financial services orgs, especially those in capital markets, frequently has been on the forefront of generative AI investment.

Marketing

Marketing Government Financial Services Artificial Intelligence

The Financial Service and Insurance Industries Need Intelligent Document Processing; Here’s Why

Rocket Software

MARCH 14, 2022

Analyst firm IDC recently published a Vendor Spotlight report featuring ASG Mobius Content Services (Mobius) and its applications in the financial service and insurance industries. Solving these challenges requires employee training and prioritization of documents to manage the increasingly high volume.

Financial Services

Financial Services Insurance Digital transformation Paper

NYDFS Amends Cybersecurity Rules for Financial Services Companies

Hunton Privacy

NOVEMBER 23, 2022

On November 9, 2022, the New York Department of Financial Services (NYDFS) released its second, proposed amendments to the Part 500 Cybersecurity Rule. Cybersecurity Governance. The proposed amendments revise several aspects of the draft Cybersecurity Rule amendments released on July 29, 2022.

Financial Services

Financial Services Cybersecurity Ransomware Risk

What can AI and generative AI do for governments?

IBM Big Data Hub

SEPTEMBER 20, 2023

When implemented in a responsible way—where the technology is fully governed, privacy is protected and decision making is transparent and explainable—AI has the power to usher in a new era of government services. AI’s value is not limited to advances in industry and consumer products alone.

Government

Government Artificial Intelligence Privacy Digital transformation

Automated governance and trustworthy AI

IBM Big Data Hub

JUNE 7, 2022

Governments and regulatory bodies around the world are working to establish safety standards. The proposed rules aim to govern automated valuation models to protect borrowers. The announcement highlighted the crucial role of training data, and the terrible consequences of using data that “fails to represent American society.”.

Government

Government Financial Services Compliance Cloud

New Cybersecurity Rules for Financial Institutions in New York State Take Effect November 1, 2024

Thales Cloud Protection & Licensing

OCTOBER 24, 2024

New Cybersecurity Rules for Financial Institutions in New York State Take Effect November 1, 2024 madhav Fri, 10/25/2024 - 06:09 The next major deadline for compliance with the updated cybersecurity rules from the New York State Department of Financial Services (NYDFS) is November 1, 2024.

Cybersecurity

Cybersecurity Financial Services Encryption Compliance

Proposed Amendments to NY Financial Services Cybersecurity Regulations Impose New Obligations on Large Entities, Boards of Directors and CISOs

Hunton Privacy

AUGUST 15, 2022

On July 29, 2022, the New York Department of Financial Services (“NYDFS”) posted proposed amendments (“Proposed Amendments”) to its Cybersecurity Requirements for Financial Services Companies (“Cybersecurity Regulations”). As part of the “training and monitoring” requirements under Section 500.14

Financial Services

Financial Services Cybersecurity Risk Passwords

Historic Charges: First Enforcement Action Filed by New York Department of Financial Services Under Cybersecurity Regulation

Data Matters

AUGUST 19, 2020

On July 21, 2020, the New York State Department of Financial Services (NYDFS or the Department) issued a statement of charges and notice of hearing (the Statement) against First American Title Insurance Company (First American) for violations of the Department’s Cybersecurity Requirements for Financial Services Companies, 23 N.Y.C.R.R.

Financial Services

Financial Services Cybersecurity Insurance Risk

New York Department of Financial Services Issues First Guidance by a U.S. Regulator Concerning Cyber Insurance

Data Matters

FEBRUARY 10, 2021

On February 4, 2021, the New York Department of Financial Services (NYDFS) issued Circular Letter No. Lacewell stated that cybersecurity is the biggest risk for government and private organizations and described how the Framework is based on “extensive dialogue with industry and experts.”. The Framework. 1 See W.B.

Insurance

Insurance Financial Services Cybersecurity Risk

AI Governance: Why our tested framework is essential in an AI world

Collibra

AUGUST 14, 2023

As we speed into a new AI era, there’s a critical element that’s often missing when organizations rush forward in hyper-competitive markets to build scalable, trusted AI programs — and that’s AI governance. An AI governance framework offers a blueprint for how to create successful AI products.

Government

Government Risk Financial Services Compliance

From principles to actions: building a holistic approach to AI governance

IBM Big Data Hub

SEPTEMBER 27, 2022

Whether it be financial services, employee hiring, customer service management or healthcare administration, AI is increasingly powering critical workflows across all industries. AI governance: From principles to actions. Sometimes an organization’s need is more tied to organizational AI governance.

Government

Government Compliance Data science Financial Services

The US government sanctioned four entities and one individual for supporting cyber operations conducted by North Korea

Security Affairs

MAY 24, 2023

The US Department of the Treasury’s Office of Foreign Assets Control (OFAC) announced sanctions against four entities and one individual for their role in malicious cyber operations conducted to support the government of North Korea. ” reads the announcement. correspondent or payable-through account sanctions.”

Government

Government Military Financial Services Security

2024 Cybersecurity Laws & Regulations

eSecurity Planet

SEPTEMBER 21, 2024

The landscape of cybersecurity laws and regulations today is set to undergo significant changes, impacting businesses, government entities, and individuals alike. Understanding and adhering to cybersecurity regulations is crucial for any organization as cyber threats evolve and become more sophisticated.

Cybersecurity

Cybersecurity Computer and Electronics Compliance Privacy

Finance sector must simplify staff awareness training

IT Governance

APRIL 11, 2019

Financial services firms must do more to educate employees about cyber security, according to the FCA (Financial Conduct Authority). Organisations need to make staff awareness training a board-level priority. Staff awareness training is a crucial part of this.

Retail

Retail Risk Education Financial Services

Top 6 Best Practices for Data Governance

Collibra

MARCH 11, 2021

Data governance is a very intricate field, so implementing and sustaining data governance comes with a suite of challenges. Luckily, thousands, if not millions, of organizations use data governance to improve their operations, so you can learn from others’ mistakes and successes. Focus on the operating model.

Government

Government Communications Insurance Customer Experience

6 best practices for a data governance strategy

Collibra

APRIL 11, 2022

Data governance is a very intricate field, so implementing and sustaining data governance comes with a suite of challenges. Luckily, thousands, if not millions, of organizations use data governance to improve their operations, so you can learn from others’ mistakes and successes. What are data governance best practices?

Government

Government Communications Insurance Customer Experience

NYDFS Imposes Fine of $5 Million on Carnival for Cybersecurity Breaches

Hunton Privacy

JULY 1, 2022

On June 24, 2022, the New York State Department of Financial Services (“NYDFS” or the “Department”) announced it had entered into a $5 million settlement with Carnival Corp.

Cybersecurity

Cybersecurity Insurance Phishing Financial Services

BEST PRACTICES: Mock phishing attacks prep employees to avoid being socially engineered

The Last Watchdog

MAY 1, 2019

Related: Why diversity in training is a good thing. He came up with a new approach to testing and training the bank’s employees – and the basis for a new company, LucySecurity. People tend to be very resistant to training,” Bastable told me. How much better? But as soon as you stop, the number quickly goes back up.”

Phishing

Phishing Financial Services Manufacturing Education

#ModernDataMasters: Nicola Askham, The Data Governance Coach

Reltio

SEPTEMBER 24, 2019

Nicola Askham is the leading data governance training provider in the UK with over 16 years of experience and research in the field. She delivers training and consulting to major organisations to help them implement full data governance frameworks. ” However, I got into data governance totally by accident.

Government

Government Digital transformation Big data IT

5 things to know: Driving innovation with AI and hybrid cloud in the year ahead

IBM Big Data Hub

DECEMBER 18, 2023

For organizations of all types—and especially those in highly regulated industries such as financial services, government, healthcare and telco—considerations including the rise of generative AI, evolving regulations and data sovereignty laws and ongoing security challenges must be top of mind.

Cloud

Cloud Financial Services Compliance Digital transformation

$8 million penalty to NYDFS – and another case of over-retention

Data Protection Report

JANUARY 18, 2024

On January 3, 2024, the New York Department of Financial Services announced a consent order with GGT, where GGT agreed to pay NYDFS $8 million and to surrender its BitLicense (for cryptocurrency trading), due to alleged violations of NYDFS’ cybersecurity and its virtual currency regulations.

Cybersecurity

Cybersecurity Financial Services Compliance Encryption

Top 10 Governance, Risk and Compliance (GRC) Vendors

eSecurity Planet

JANUARY 21, 2021

Governance, risk, and compliance (GRC) software helps businesses manage all of the necessary documentation and processes for ensuring maximum productivity and preparedness. Third-party governance. IT governance and security. Financial reporting compliance. Privacy governance and management. Audit management.

Compliance

Compliance Risk Government Retail

Black Friday and Cyber Weekend: Navigating the Tumultuous Waters of Retail Cybersecurity

Thales Cloud Protection & Licensing

NOVEMBER 20, 2023

The IBM 2023 Cost of a Data Breach Report , for example, highlights the continuous financial burden on retailers, which, coupled with potential reputational damage, emphasizes the dire need for retailers to prioritize and bolster their cybersecurity measures. Governments: Look to global benchmarks.

Retail

Retail Cybersecurity Financial Services Encryption

IBM Connected Trade Platform helps power the digitization of trade and supply chain financing

IBM Big Data Hub

SEPTEMBER 18, 2023

Supplier visibility and traceability is growing in importance to help achieve environmental, social and governance (ESG) targets. Clients leveraging IBM Cloud for Financial Services through IBM’s Connected Trade Platform can take advantage of technical expertise to enable cloud deployment as they address their compliance requirements.

Financial Services

Financial Services Cloud Compliance Artificial Intelligence

The Relevance of Privacy-Preserving Techniques and Generative AI to DORA Legislation

Thales Cloud Protection & Licensing

OCTOBER 28, 2024

It aims to ensure that financial institutions, ranging from banks to payment processors, can manage and mitigate risks associated with information and communication technology. Key areas covered by DORA include incident reporting, regular ICT risk assessments, third-party risk management, and maintaining robust governance frameworks.

Privacy

Privacy Encryption Compliance Risk

Security Compliance & Data Privacy Regulations

eSecurity Planet

AUGUST 9, 2022

See the Top Governance, Risk and Compliance (GRC) Tools. Other industry standards too can have the force of “pseudo-law” – notably, the NIST Cybersecurity Framework, which federal regulators often apply to financial-services firms and government contractors. See the Best Cybersecurity Awareness Training for Employees.

Data Privacy

Data Privacy Compliance Privacy Security

Catches of the Month: Phishing Scams for October 2023

IT Governance

OCTOBER 13, 2023

EvilProxy phishing campaign targets Microsoft 365 accounts via indeed.com A phishing campaign identified by Menlo Security has been targeting senior executives in various industries – most notably banking and financial services, property management and real estate, and manufacturing – since July.

Phishing

Phishing Financial Services Manufacturing Personal data

Best Fraud Management Systems & Detection Tools in 2022

eSecurity Planet

SEPTEMBER 16, 2022

Finally, it also is useful for companies looking for a governance, risk, compliance ( GRC ) solution. In its 2021 Threat Force Intelligence Index , IBM reported that manufacturing and financial services were the two industries most at risk for attack, making up 23.2% of attacks IBM handled, respectively. million in losses.

Analytics

Analytics Risk Authentication Financial Services

Risk Management under the DORA Regulation

IT Governance

NOVEMBER 23, 2023

Perhaps even more concerning to EU lawmakers is how dependent society at large is on banking and other financial services. In turn, financial institutions heavily depend on ICT to be able to provide those services to begin with. That really shouldn’t surprise us – these are lucrative targets for cyber criminals.

Risk

Risk Data breaches Authentication Financial Services

How to responsibly scale business-ready generative AI

IBM Big Data Hub

JUNE 26, 2023

Possibilities are growing that include assisting in writing articles, essays or emails; accessing summarized research; generating and brainstorming ideas; dynamic search with personalized recommendations for retail and travel; and explaining complicated topics for education and training. What is watsonx.governance?

Retail

Retail Compliance Risk Education

Tackling Data Sovereignty with DDR

Security Affairs

JUNE 20, 2023

Data sovereignty also encompasses the rights and regulations governing data storage, processing, and transfer and often intersects with privacy, security, and legal considerations. Understanding Data Sovereignty Data sovereignty has emerged as a critical concern for businesses worldwide in today’s interconnected digital landscape.

Compliance

Compliance Cybersecurity Risk Encryption

2024 Tech and Cybersecurity Forecast: Navigating New Frontiers in Business

Thales Cloud Protection & Licensing

DECEMBER 20, 2023

This development model enables enterprises to conduct model training and processing directly at the edge or on-premises. By moving computation and model training to the edge, organizations can train their models locally without uploading datasets to hyperscalers or relying on foundational models.

Cybersecurity

Cybersecurity Blockchain Artificial Intelligence Encryption

3 key reasons why your organization needs Responsible AI

IBM Big Data Hub

FEBRUARY 8, 2023

This necessitates the detection of bias during data acquisition, building, training, deploying and monitoring models. Protect and scale against government regulations AI regulations are growing and changing at a rapid pace and noncompliance can lead to costly audits, fines and negative press. So what is AI governance?

Artificial Intelligence

Artificial Intelligence Compliance Government Analytics

How Long Should I Keep This Business Record For?

AIIM

MARCH 3, 2020

Too often I hear one of two, equally bad answers: Keep Records for Seven years: This seems to be the de facto answer, especially for financial services records. Internal Revenue Service rules around when they can audit individual and corporate tax returns. As near as I can tell, this comes from the U.S. And they will!

Records Management

Records Management Financial Services Big data Analytics

Hundreds of malicious Chrome browser extensions used to spy on you!

Security Affairs

JUNE 20, 2020

Malicious Chrome browser extensions were used in a massive surveillance campaign aimed at users working in the financial services, oil and gas, media and entertainment, healthcare, government organizations, and pharmaceuticals. The tech giant removed over 100 Chrome browser extensions from the official Web Store.

Healthcare

Healthcare Financial Services Security Communications

How Baptist Health improved data analysis with a cloud-based tech stack

Collibra

JULY 9, 2024

The initial staff retraining and the cost of migration are real barriers to an updated, cloud-based data governance system. Prior to adopting Collibra , the Baptist Health data governance team encountered frequent frustrations with the organization’s legacy on-premises storage systems.

Cloud

Cloud Analytics Government Artificial Intelligence

NEW TECH: This free tool can help gauge, manage third-party cyber risk; it’s called ‘VRMMM’

The Last Watchdog

JANUARY 30, 2019

Turn the corner into 2019 and we find Citigroup, CapitalOne, Wells Fargo and HSBC Life Insurance among a host of firms hitting the crisis button after their customers’ records turned up on a database of some 24 million financial and banking documents found parked on an Internet-accessible server — without so much as password protection.

Risk

Risk Financial Services Insurance Cybersecurity

SEC Announces Settled Charges Against First American for Cybersecurity Disclosure Controls Failures – Lessons Learned

Data Matters

JUNE 24, 2021

The SEC is considering enhancing its disclosure rules concerning cybersecurity risk governance and has indicated a target release date of October 2021. Companies should consider implementing training processes to ensure that information security personnel understand cybersecurity disclosure requirements, especially as stated in the Guidance.

Cybersecurity

Cybersecurity Financial Services Risk Compliance

Record Retention is a Key Component of Your Privacy and Cyber Compliance Program

Data Protection Report

DECEMBER 23, 2019

Likewise, the New York State Department for Financial Services regulations requires relevant entities to have appropriate record retention policies and procedures. A policy or standard needs to be set, which is then explained by training and is measured. How do you build an effective information governance program?

Privacy

Privacy Compliance Personal data Risk

How to choose the best AI platform

IBM Big Data Hub

OCTOBER 20, 2023

AI platforms assist with a multitude of tasks ranging from enforcing data governance to better workload distribution to the accelerated construction of machine learning models. You can connect to the existing database, upload a data file, anonymize columns and generate as much data as needed to address data gaps or train classical AI models.

Data science

Data science Manufacturing Artificial Intelligence Retail

What is Cybersecurity Risk Management?

eSecurity Planet

FEBRUARY 11, 2022

Rather than doors, locks and vaults, IT departments rely on a combination of strategies, technologies, and user awareness training to protect an enterprise against cybersecurity attacks that can compromise systems, steal data and other valuable company information, and damage an enterprise’s reputation. What is Cybersecurity Risk Management?

Risk

Risk Cybersecurity Encryption Access

The CFO’s role in the age of generative AI

IBM Big Data Hub

MAY 14, 2024

The finance workforce should be value creators and experience designers, enhancing their analytical and technical skills to be able to train and prompt their assistants—fine-tuning, adjusting and improving the digital service.

Unstructured data

Unstructured data Government Cloud Analytics

BIPA Year in Review: Where Are We Now and What’s Coming Next?

Data Protection Report

NOVEMBER 16, 2022

BIPA exempts certain types of entities, namely, organizations that are governed by certain federal laws including the X-Ray Retention Act, the Health Insurance Portability and Accountability Act of 1996 (“HIPAA”), and the Gramm-Leach-Bliley Act (“GLBA”). Who is covered by BIPA? 740 ILCS 14/25(b)-(c). DePaul University , Case No.

Financial Services

Financial Services Privacy Compliance Insurance

NYDFS releases major update to Part 500 cybersecurity requirements for financial services companies

Capital Markets, AI, and the need for governance

Trending Sources

The Financial Service and Insurance Industries Need Intelligent Document Processing; Here’s Why

NYDFS Amends Cybersecurity Rules for Financial Services Companies

What can AI and generative AI do for governments?

Automated governance and trustworthy AI

New Cybersecurity Rules for Financial Institutions in New York State Take Effect November 1, 2024

Proposed Amendments to NY Financial Services Cybersecurity Regulations Impose New Obligations on Large Entities, Boards of Directors and CISOs

Historic Charges: First Enforcement Action Filed by New York Department of Financial Services Under Cybersecurity Regulation

New York Department of Financial Services Issues First Guidance by a U.S. Regulator Concerning Cyber Insurance

AI Governance: Why our tested framework is essential in an AI world

From principles to actions: building a holistic approach to AI governance

The US government sanctioned four entities and one individual for supporting cyber operations conducted by North Korea

2024 Cybersecurity Laws & Regulations

Finance sector must simplify staff awareness training

Top 6 Best Practices for Data Governance

6 best practices for a data governance strategy

NYDFS Imposes Fine of $5 Million on Carnival for Cybersecurity Breaches

BEST PRACTICES: Mock phishing attacks prep employees to avoid being socially engineered

#ModernDataMasters: Nicola Askham, The Data Governance Coach

5 things to know: Driving innovation with AI and hybrid cloud in the year ahead

$8 million penalty to NYDFS – and another case of over-retention

Top 10 Governance, Risk and Compliance (GRC) Vendors

Black Friday and Cyber Weekend: Navigating the Tumultuous Waters of Retail Cybersecurity

IBM Connected Trade Platform helps power the digitization of trade and supply chain financing

The Relevance of Privacy-Preserving Techniques and Generative AI to DORA Legislation

Security Compliance & Data Privacy Regulations

Catches of the Month: Phishing Scams for October 2023

Best Fraud Management Systems & Detection Tools in 2022

Risk Management under the DORA Regulation

How to responsibly scale business-ready generative AI

Tackling Data Sovereignty with DDR

2024 Tech and Cybersecurity Forecast: Navigating New Frontiers in Business

3 key reasons why your organization needs Responsible AI

How Long Should I Keep This Business Record For?

Hundreds of malicious Chrome browser extensions used to spy on you!

How Baptist Health improved data analysis with a cloud-based tech stack

NEW TECH: This free tool can help gauge, manage third-party cyber risk; it’s called ‘VRMMM’

SEC Announces Settled Charges Against First American for Cybersecurity Disclosure Controls Failures – Lessons Learned

Record Retention is a Key Component of Your Privacy and Cyber Compliance Program

How to choose the best AI platform

What is Cybersecurity Risk Management?

The CFO’s role in the age of generative AI

BIPA Year in Review: Where Are We Now and What’s Coming Next?

Stay Connected