Cybercriminals seek to exploit technological vulnerabilities to gain access to sensitive electronic data and financial transactions and cause significant financial losses for any regulated entities and consumers. The financial services industry is a significant target for cyber threats due to the direct impact of monetary gain by targeting the industry.
Given the severity of the issue and the risk to all regulated entities, certain regulatory minimum standards are warranted to mitigate flaws in technological advancements. BeyondTrust has been monitoring the legislation from The New York State Department of Financial Services (“DFS”), 23 NYCRR 500, to combat the ever-growing threat posed to information and financial systems by nation-states, terrorist organizations and independent criminal actors. Now that this regulation is in force, it’s important for organizations to understand the requirements and how to comply with them.
To that end, BeyondTrust has developed a brief on achieving compliance with DFS 23 NYCRR 500. This compliance brief maps BeyondTrust solutions for privileged access management and vulnerability management into the requirements for NYCRR 500.
For more on this critical cybersecurity regulation and how to achieve compliance with it, please download the brief today!
Morey J. Haber, Chief Security Advisor
Morey J. Haber is the Chief Security Advisor at BeyondTrust. As the Chief Security Advisor, Morey is the lead identity and technical evangelist at BeyondTrust. He has more than 25 years of IT industry experience and has authored four books: Privileged Attack Vectors, Asset Attack Vectors, Identity Attack Vectors, and Cloud Attack Vectors. Morey has previously served as BeyondTrust’s Chief Security Officer, Chief Technology, and Vice President of Product Management during his nearly 12-year tenure. In 2020, Morey was elected to the Identity Defined Security Alliance (IDSA) Executive Advisory Board, assisting the corporate community with identity security best practices. He originally joined BeyondTrust in 2012 as a part of the acquisition of eEye Digital Security, where he served as a Product Owner and Solutions Engineer, since 2004. Prior to eEye, he was Beta Development Manager for Computer Associates, Inc. He began his career as Reliability and Maintainability Engineer for a government contractor building flight and training simulators. Morey earned a Bachelor of Science degree in Electrical Engineering from the State University of New York at Stony Brook.