Interview with the Head of the New York Department of Financial Service’s Cybersecurity Division

The Cybersecurity Rule from New York Department of Financial Services is widely acknowledged as a groundbreaking and leading cybersecurity regulation. From technical security requirements, to Board governance, and the yearly certification requirement, the Cybersecurity Rule has had a significant impact since being rolled out in 2017. Under Justin Herring, Executive Deputy Superintendent, Cybersecurity Division, the Department issued its first Enforcement order and started a rigorous cybersecurity examination process. In May 2021, the Department entered into a $1.8 million settlement with First Unum and Paul Revere Insurance Companies for failure to meet regulatory requirements while certifying otherwise.

Join Andrew S. Pak, Counsel in our U.S. Data Solutions, Cyber and Privacy Practice, for an one-on-one interview with Justin Herring, Head of the New York Department of Financial Service’s Cybersecurity Division, to get Mr. Herring’s take on the office’s enforcement priorities, threats facing companies, “low hanging fruit” for good cyber hygiene, third party risk, and more.