NYDFS Cybersecurity Regulations (23 NYCRR 500)

New York is one of the biggest financial hubs in the world; as you can imagine where there is sensitive financial information, there are people who want to get their hands on it. It is for this reason major financial firms operating in New York will face stiff cyber security obligations under the new New York Department of Financial Services Cybersecurity Regulations (23 NYCRR 500).

This regulation applies to firms holding a banking, insurance or financial services licence to operate in New York. 23 NYCRR 500, and has been effective as of March 1st 2017.

Key dates for compliance:

  • February 15, 2018 – Deadline for Covered Entities to submit first certification under 23 NYCRR 500.17(b)
  • March 1, 2018 – One year transition period ends, must be in compliance with sections 500.04(b), 500.05, 500.09, 500.12, and 500.14(b)
  • September 3, 2018 – Eighteen month transition period ends, must be in compliance with sections 500.06, 500.08, 500.13, 500.14(a), and 500.15
  • March 1, 2019 – Two year transition period ends, must be in compliance with section 500.11

Find our more in our fact sheet which includes:

  • 23 NYCRR 500 overview
  • Key dates for covered entities
  • Key tasks for compliance
  • How Boldon James can help

Please complete the adjoining form to request it.

1,000+ happy customers trust Fortra's Boldon James.
See why by requesting a personalised demo.

Raytheon Logo
Societe Generale Logo
Volkswagen Logo

5 Steps To Effective
Data Protection


Gartner Peer Insights Logo

"Great product
for user awareness"

Very good customer support for implementation and operations. The product is great for improving user awareness of data classification.

"Great Customer Satisfaction and a well integrated product"

The Boldon James Engineers are very supportive in assisting with deployments, queries and handling issues.

"Helps to easily understand and implement classification"

Implementation is rather easier than other competitive products, administration console is also easier to understand and everything relevant to classification is there.

Why choose
Fortra's Boldon James

With unrivalled customer service and best-of-breed data protection and governance solutions,
we are helping many of the world’s most successful organisations take control of their business data.
Everyday, our customers enjoy more effective, secure and streamlined operations -
protecting their business critical information and reducing risk.

Cloud Security

We integrate with powerful data security and governance ecosystems.


We protect business critical data, improve data control and reduce risk.

Group 38795

We deliver improved and streamlined business performance.


We are a “safe pair of hands” that constantly deliver success.