Class A companies are covered entities with at least 2,000 employees (counting affiliates worldwide) or over $1 billion in gross annual revenue averaged over the prior three fiscal years. Class A companies face enhanced requirements including specific penetration testing methodologies, independent cybersecurity program audits, and stricter privileged access controls. Verify current thresholds with DFS.
Keep Exploring
References