NY Cybersecurity Reg Compliance: Focus on Vendor RiskAttorney Ted Augustinos on New Guidelines for Third-Party Risk Management
As of March 1, 2019, covered entities will be required to be in compliance with the New York Department of Financial Services Cybersecurity Regulation Section 500.11, the Third Party Service Provider Security Policy. What are the key requirements? Attorney Ted Augustinos, a partner at Locke Lord LLP, outlines the new compliance landscape.
In a video interview at Information Security Media Group's recent Legal & Compliance Summit in New York, Augustinos discusses:
- Compliance with the New York regulation;
- Specific guidelines for vendor risk management;
- Emerging legislation beyond New York that deals with third-party risks.
Augustinos is a partner at Locke Lord LLP, an international law firm with practices in the U,S., U.K. and Asia. He serves as a member of the steering committee of the firm's privacy and cybersecurity group and leads the group's incident response team and its NY DFS cybersecurity initiative. Augustinos is also managing partner of the firm's Hartford office. He has counselled clients in numerous industries, including financial services, healthcare, insurance, defense, retail, public utilities, professional services and education.