Secure Controls Framework
Download The SCF
NY DFS Part 500

What is the annual certification requirement under NY DFS Part 500?

Direct Answer

Each covered entity must submit an annual Certification of Compliance to DFS confirming its cybersecurity program meets Part 500 requirements. The certification must be signed by the CEO, CISO, or equivalent senior officer and submitted through the DFS portal by April 15 each year. The 2023 amendments strengthened this certification to create individual accountability for the signing officer.

Keep Exploring

Relevant Resources

References

Authoritative Sources