On May 21, 2026, the New York Department of Financial Services (NYDFS) issued industry guidance to licensees regarding security measures they should consider taking “in a heightened cybersecurity threat environment.” Even organizations not subject to NYDFS regulation may want to consider these steps that the NYDFS characterizes as “best practices.”
Background
Many regulators, including NYDFS