Navigating New York's New Cybersecurity Regulations and Federal Guidance for Banks and Other Financial Institutions
Complying With New York DFS Regulations, Avoiding Federal Enforcement Actions for Data Breaches
A live 90-minute CLE webinar with interactive Q&A
Wednesday, April 12, 2017 (in 13 days)
1:00pm-2:30pm EDT, 10:00am-11:30am PDT
This CLE webinar will review the new cybersecurity regulations issued by the New York Department of Financial Services, including which institutions are regulated and the staffing, reporting and third-party monitoring requirements imposed under the state regulations. The panel will also discuss recently proposed federal regulations affecting financial institutions, recent enforcement actions related to data breaches, and the cybersecurity standards implied by such actions.
New cybersecurity regulations issued by the New York Department of Financial Services (23 NYCRR Part 500) went into effect March 1, 2017. They include mandatory staffing and reporting requirements and the obligation to monitor third-party vendors. The regulations mark the first of their kind in the cybersecurity space in the U.S. by any state or federal regulator.
It is likely that other state regulators will follow suit, as cybersecurity regulatory oversight continues to increase at the state level. With respect to a large number of banks, insurance carriers and other financial services companies, New York’s regulations will have a national effect.
On Oct. 19, 2016, the Board of Governors of the Federal Reserve System, the Office of the Comptroller of the Currency and the Federal Deposit Insurance Corporation (collectively, the agencies) jointly issued an advance notice of proposed rulemaking and inviting public comment on cybersecurity regulations and guidance for large and interconnected entities under their supervision. The advance notice of proposed rulemaking points toward more specific federal regulation of cybersecurity.
Federal agencies and the courts have already signaled that the failure of financial institutions to implement a robust cybersecurity framework can result in significant damages and penalties in the event of a data breach. Bank counsel must be able advise banking and financial services clients on measures that should be in place now to help avoid future claims and penalties.
Listen as our authoritative panel reviews 23 NYCRR Part 500, providing advice as to the institutions impacted, and how the new staffing, reporting and monitoring obligations may vary depending on activities in which a financial services company is engaged. The panel will also discuss the regulations proposed by the federal agencies and the latest trends in enforcement actions and lawsuits arising from data breaches.
- New York cybersecurity regulations (23 NYCRR Part 500: the “NY regs”)
- Banks and other financial institutions subject to the NY regs
- Data protection measures—staffing and procedures
- Reporting requirements
- Ramifications outside of New York—new standard for claims
- Federal agency enforcement actions—increased frequency and penalties
- Status of cybersecurity regulations jointly proposed by Federal Reserve, OCC and FDIC
The panel will review these and other key issues:
- The significance of the New York regulation (23 NYCRR Part 500)—New York as a global financial center
- Which institutions are covered by the New York regulation?
- What is the status of the proposed federal regulations?
- Lessons from the most recent cases and federal enforcement actions related to data breaches
Mark L. Krotoski, Partner
Morgan Lewis & Bockius,
Palo Alto, Calif.
Mr. Krotoski represents and advises clients on antitrust cartel investigations; cybersecurity and privacy matters; trade secret, economic espionage, fraud, and foreign corrupt practices cases; and government investigations. With nearly 20 years of experience as a federal prosecutor and a leader in the US Department of Justice, he has a unique blend of litigation and investigative experience. Previously, as chief and deputy chief of the Criminal Division in the US Attorney’s Office for the Northern District of California, he supervised cases involving white collar crime, securities fraud, computer intrusion, intellectual property, organized crime, and antiterrorism. He frequently speaks on topics involving criminal antitrust enforcement, cybersecurity, cybercrime, and trade secret issues.
Joseph D. Simon, Partner
Cullen and Dykman,
Garden City, N.Y.
Mr. Simon handles regulatory, compliance, corporate and transactional matters for financial institutions, and real estate matters for all types of clients. He advises financial institutions on a wide range of issues, including truth-in-lending, RESPA, truth-in-savings, financial privacy, transactions with affiliates, lending limits, electronic banking, banking operations, and currency transaction and IRS reporting obligations. He represents financial institutions on various types of regulatory applications, including bank holding company filings, branch applications, mortgage banking license applications, change in control applications, and service corporation and operating subsidiary notices. He also advises financial institutions on the myriad of changes made to the New York law governing powers of attorney.
Live Webinar $297.00
Add a colleague on the same connection in the same room for only $97.00 in the shopping cart or by calling customer service.
This webinar is eligible for at least 1.5 general CLE credits.
CLE credits are not available for PR.
*In KS, OH, PA, for more than 1 attendee on the connection you must contact Strafford CLE via email or call 1-800-926-7926 ext. 35 prior to the program for special instructions.
CLE On-Demand - Streaming Video
Includes recorded streaming video of full program plus PDF handouts.
On-demand is the only recorded format recognized for CLE credits in DE, IN, KS, LA, MS, NC, OH, OK, SC, TN, VA, WI.
AK, AZ, CA, CO, CT, DE, FL, GA, HI, IA, ID, IL, IN*, KS, KY, LA, ME, MN, MO, MT, NC, ND, NH**, NJ, NM, NV, NY, OH*, OK, OR, PA, SC, TN, TX, UT, VA, VT, WA, WI, WV, WY (Note: Some states restrict CLE eligibility based on the age of a program. Refer to our state CLE Map for additional information.)
*Only available for attorneys admitted for more than two years. For OH CLE credits, only programs recorded within the current calendar year are eligible - contact the CLE department for verification.
**NH attendees must self-determine if a program is eligible for credit and self-report their attendance.
CLE On-Demand Video $297.00
Available 48 hours after the live event
Includes full event recording plus handouts (available after live webinar).
Strafford is an approved provider and self-study CLE credit is available in most states.
AK, AZ, CA, CO, CT, FL, GA, HI, IA, ID, IL, KY, ME, MN, MO, MT, ND, NJ, NM, NY, OR, PA, TN, TX, UT, VT, WA, WV, WY (Note: Some states restrict CLE eligibility based on the age of a program. Refer to our state CLE Map for additional information.)
Strafford will process CLE credit for one person on each recording.
Additional copies of a recording can be purchased at a discount. Please call Strafford Customer Service toll-free at 1-800-926-7926 ext 10 or email email@example.com to place your order.
Recorded Webinar Download $297.00
Available 48 hours after the live event
Recorded Audio Download (MP3) $297.00
Available 24 hours after the live event
DVD (Slide Presentation with Audio) $297.00
plus $9.45 S&H
Available ten business days after the live event
Registration Plus Recorded Event
Live Webinar & Webinar Download $394.00
Recorded Webinar Download Only $97.00 with Registration/Webinar Combo
Live Webinar & Audio Download $394.00
Recorded Audio Download (MP3) Only $97.00 with Registration/MP3 Combo
Live Webinar & DVD $394.00 plus $9.45 S&H
DVD (Slide Presentation with Audio) Only $97.00 with Registration/DVD Combo
Strafford webinars offer several options for participation: online viewing of speaker-controlled PowerPoint presentations with audio via computer speakers or via phone; or audio only via telephone (download speaker handouts prior to the program). Please note that our webinars do not feature videos of the presenters.
CLE Credits By State
This provided a great forum for getting up-to-date information on ongoing litigation that is moving quickly.
C. Bailey King, Jr.
Smith Moore Leatherwood
It was well organized, moved through the materials quickly and covered them well.
The topic covered was very timely, the program was well structured and I appreciated that the speakers addressed very recent issues.
It was clear that each speaker had an enormous amount of knowledge about the subject matter.
I liked the detailed statistics and case discussions provided by the speakers.
Kathryn C. Ellsworth
Grais & Ellsworth
Banking & Finance Law Advisory Board
Alston & Bird
Orrick Herrington & Sutcliffe
Stradley Ronon Stevens & Young
Strafford webinars are backed by our 100% Unconditional Money-Back Guarantee: if you are not satisfied with any of our products, simply let us know and get a full refund. For more information regarding complaints and refunds, please contact us at 1-800-926-7926 ext 10. Complaints regarding this program can be submitted via the course evaluation found in the “Thank you” e-mail at the end of the course.