Statutes, codes, and regulations
New York Codes, Rules and Regulations
Title 23 - FINANCIAL SERVICESChapter I - Regulations of the Superintendent of Financial Services
Part 500 - CYBERSECURITY REQUIREMENTS FOR FINANCIAL SERVICES COMPANIES
Section 500.6 - Audit Trail

N.Y. Comp. Codes R. & Regs. tit. 23 § 500.6

Download
PDF
Current through Register Vol. 46, No. 39, September 25, 2024
Section 500.6 - Audit Trail
(a) Each Covered Entity shall securely maintain systems that, to the extent applicable and based on its Risk Assessment:
(1) are designed to reconstruct material financial transactions sufficient to support normal operations and obligations of the Covered Entity; and
(2) include audit trails designed to detect and respond to Cybersecurity Events that have a reasonable likelihood of materially harming any material part of the normal operations of the Covered Entity.
(b) Each Covered Entity shall maintain records required by this section for not fewer than five years.

N.Y. Comp. Codes R. & Regs. Tit. 23 § 500.6

Adopted, New York State Register March 1, 2017/Volume XXXIX, Issue 09, eff.3/1/2017