Each covered entity must submit an annual Certification of Compliance to DFS confirming its cybersecurity program meets Part 500 requirements. The certification must be signed by the CEO, CISO, or equivalent senior officer and submitted through the DFS portal by April 15 each year. The 2023 amendments strengthened this certification to create individual accountability for the signing officer.
Keep Exploring
References