Skip to the main content.
Request a Call
Request a Call

Cybersecurity

Cybersecurity (NYDFS 23 NYCRR 500)

This library of Cybersecurity Playbooks provides a set of fully loaded and editable templates that represent the core of what is generally required by management (including process owners), boards of directors and their audit committees, as well as internal and external auditors of relevant organizations, to document, assess, test, report and oversee the design and operating effectiveness of the typical key internal controls on which management is reliant to maintain compliance with Cybersecurity regulatory requirements.

They are drawn from a range of authoritative sources including the National Institute of Standards and Technology (NIST), the Federal Financial Institutions Examination Council's (FFIEC), the Department of Defense, the SEC's Office of Compliance Inspections and Examinations (OCIE), and the New York Department of Financial Services (NYDFS).

Download the Playbook

Unlock access to a wealth of information.

 

What is the Cybersecurity (NYDFS 23 NYCRR 500) Playbook?

The Cybersecurity (NYDFS 23 NYCRR 500) Playbook addresses the following areas:

  • Cybersecurity Program
  • Cybersecurity Policy
  • Chief Information Security Officer
  • Penetration Testing and Vulnerability Assessments
  • Audit Trail
  • Access Privileges
  • Application Security
  • Risk Assessment
  • Cybersecurity Personnel and Intelligence
  • Third Party Service Provider Security Policy
  • Multi-Factor Authentication
  • Limitations on Data Retention
  • Training and Monitoring
  • Encryption of Nonpublic Information
  • Incident Response Plan
  • Notification of Cybersecurity Event(s), and
  • Confidentiality
 

Gallery

 

You Also Get

Policy Document Template

Policy Document Template

These templates are designed to be a starting point for your clients, which can be tailored for your client's specific organizational needs.

Overview Flow Charts

Overview Flow Charts

A diagrammatic representation of the flow of assessment activities within your playbook.

Instructions

Instructions

Our instructions for use. These are the same for all our playbooks, once you know how to use one, you can use them all.

Tutorial

Tutorial

A PowerPoint tutorial on the specific playbook, covering the most important aspects of this area of assessment.

 

One Subscription. 100+ Playbooks.

You know what your clients need, let us help you deliver.

Subscribe Now

 

Related Playbooks

NIST-CSF: Cybersecurity Framework (CSF)

NIST-CSF: Cybersecurity Framework (CSF)

The Cybersecurity Maturity Model (CMMC) Level 1

The Cybersecurity Maturity Model (CMMC) Level 1

Cybersecurity Maturity Model (CMMC) Level 3

Cybersecurity Maturity Model (CMMC) Level 3

Cybersecurity Baseline Assessment (FFIEC)

Cybersecurity Baseline Assessment (FFIEC)

Cybersecurity (NYDFS 23 NYCRR 500)

Cybersecurity (NYDFS 23 NYCRR 500)

Based on Authoritative Sources

 

US Securities and Exchange Commission FRC FFIEC European Commission COSO
 

Sign up for our newsletter

and get the best of GRC Playbook straight to your inbox.