EXPERIENCE & practical knowledge MATTERS
Are you having trouble finding senior information security staff? Leverage the knowledge and talent of a seasoned professional with a block of time (300, 600, 900 or 1800 hours per year).
Financial Services 23 NYC RR 500 - Checklist
We can help with the following areas
500.02 – Creation of an information security program;
500.03 – Documentation of cybersecurity policies;
500.04 – Designate a CISO to report to board and lead cybersecurity program
500.05 – Ongoing Vulnerability and Penetration Testing along with continuous monitoring;
500.06 – Implement an audit trail of transaction and security-related events;
500.07 – Create a process/procedure to limit access and review privileges to nonpublic information;
500.08 – Creation of procedures, guidelines, standards for developing sure applications and assessing security externally developed applications;
500.09 – Periodic entity risk assessments;
500.10 – Provide cyber security training for cybersecurity personnel;
500.11 – Implement a third-party service provider security policy;
500.12 – The use of multi-factor authentication technology;
500.13 – A data retention and disposal policy;
500.14 – User access monitoring capabilities and awareness training;
500.15 – Encryption for nonpublic information at both transit and rest; and
500.16 – A written incident response plan; and
500.17 – Notification of cybersecurity event and annual reporting to the superintendent.
Your expert works on an as-needed basis, so it's an affordable way to access premium services. The fees are fixed and negotiated upfront, so there are no surprises.