Cybersecurity Reference > Glossary
23 NYCRR 500
23 NYCRR 500 requires banks, insurance companies, and other financial services institutions regulated by the New York Department of Financial Services (NYDFS or simply DFS) to establish and maintain a cybersecurity program designed to both protect consumers and to ensure the safety of New York State’s financial services industry.
.
Downloadable References
PDF
Sample Governance Policy for AI Use
Sample, shareable addition for employee handbook or company policy library to provide governance for employee AI use.
PDF
Establishing Guardrails for AI Whitepaper
Generative AI is exploding, but workplace governance is lagging. Use this whitepaper to help implement guardrails.
PDF
Practical Cybersecurity Cheat Sheet
Cheat sheet for basics to stay secure, their ideal deployment order, and steps to take in case of a breach.




