If you are opening your own insurance firm and you live in New York, there are many things you need to do before you can open your doors. One of these things is to have a good cyber security program in place. Below is some more information about this so you can get started.
What is Cybersecurity
Cybersecurity is protecting your network from threats, such as someone hacking into your system to obtain personal information, as well as information about your company and your clients. For example, you may have business information on your network that would cause an adverse impact to your insurance company if this information is disclosed. Your client's personal information, such as their driver's license number, social security number, and more, could be compromised. If your clients can sign onto your system to pay their bill online, a hacker could easily obtain their sign on and password credentials. There may be health information about your clients within your computer system.
When installing a cybersecurity program you should make sure it meets the Department of Finance's requirements.
Your DFS Cybersecurity Program
The DFS cybersecurity program that is installed for your company will address if there are any risks found on your system. For example, you may not currently have a firewall on your system to protect it from hackers or your virus software could be out of date. You may not have spyware protection installed on your network.
The DFS cybersecurity program will constantly monitor your system to ensure it is not being compromised. This will allow you to take action if something does happen so you can protect not only your information, but the personal information about your clients. Your company also needs to designate someone to be Chief Information Security Officer.
Your company must monitor and test the program on a regular basis to ensure it is running effectively. You also need to run penetration tests periodically to ensure a hacker cannot access your network.
There must be plans in writing that state what is to be done if there is a security breach on your network. You also must contact DFS after you have a cybersecurity event.
Consider hiring legal counsel to ensure you fulfill all the requirements of your DFS cybersecurity program. An insurance regulatory lawyer can be beneficial as they can help you design your curriculum, such as education and training your current staff. Are you wondering about cybersecurity? Contact a business such as CYBERGUARD360 for more information.