The EFPR Group of Companies

For over 60 years, our knowledgeable and experienced team of CPAs and business consultants have been serving individuals and businesses in Western New York and around the nation.

Event: NYS Department of Financial Services Proposed Cyber Regulation

Coffee Meeting Invite
“Seminar in a casual small setting while having Coffee and Pastry”

Please attend EFPR Group Coffee Meeting for a DFS Cyber Seminar in a Limited Guest Environment

Date:  February 10, 2017
Time: 9:00 am – 10:00 am
Location:  EFPR Group (280 Kenneth Drive, Suite 100, Rochester, NY 14616)
RSVP is mandatory.  Please contact Michael Redmond at MRedmond@EFPRgroup.com or 585.340.5187
Fee:  Free

On September 13, 2016, the New York State Department of Financial Services published draft regulations addressing Cybersecurity and related business continuity issues for it’s over 3,000 regulated entities in the state.  On Dec 28, 2016, DFS came out with revisions. These regulations, for Financial Institutions and Insurance companies, are just as pertinent to all organization who wish to have resiliency.

The New York State Department of Financial Services has modified its proposed cyber security regulations and delayed their start date by two months. The proposed regulations are now slated to go into effect on March 1, 2017, with a 180-day compliance window.

DFS’s press release concerning the new regulations can be found here – http://www.dfs.ny.gov/about/press/pr1612281.htm

According to Governor Andrew M. Cuomo, these are “first-in-the-nation” regulations” designed to protect New York State from the ever-growing threat of cyber-attacks. They “requires banks, insurance companies, and other financial services institutions regulated by the State Department of Financial Services to establish and maintain a Cybersecurity program designed to protect consumers and ensure the safety and soundness of New York State’s financial services industry.”

EFPR Group is available to consult for clients to assist them in meeting the proposed DFS Regulation.

  • Design, document and manage a Cyber Security Program
  • Create Cyber Security Policies
  • Train their Chief Information Security Officer
  • Prepare the Annual CISO report
  • Manage the Annual Penetration Tests and 2 required Vulnerability Tests
  • Create process for management of an Audit Trail an Logging
  • Conduct the Risk Assessment
  • Develop, Train Personnel, and Test The Cyber Security Incident Response Plan
  • Assist with writing the Notices to Superintendent when events are possibly going to affect the assets of the organization

For more information call

800.546.7556