Title 23 of the New York Codes, Rules and Regulations Part 500
E626973
Title 23 of the New York Codes, Rules and Regulations Part 500 is a New York State Department of Financial Services regulation that sets mandatory cybersecurity requirements for covered financial institutions operating in the state.
All labels observed (1)
| Label | Occurrences |
|---|---|
| Title 23 of the New York Codes, Rules and Regulations Part 500 canonical | 1 |
How this entity was disambiguated
This entity first appeared as the object of triple T6899923 — resolving that mention is where its identity was fixed. The disambiguator weighed these candidate entities and picked the highlighted one (or “None”, minting a new entity). This is how homonymy is resolved: the same surface form can point to different entities.
Target entity: Title 23 of the New York Codes, Rules and Regulations Part 500 Context triple: [New York State Department of Financial Services Cybersecurity Regulation, legalCitation, Title 23 of the New York Codes, Rules and Regulations Part 500]
-
A.
Title 23 of the United States Code
Title 23 of the United States Code is the primary body of federal law that regulates highways and related transportation programs in the United States.
-
B.
Title 49 of the Code of Federal Regulations
Title 49 of the Code of Federal Regulations is the section of U.S. federal law that governs transportation, including safety standards and rules for moving people and goods by road, rail, air, and water.
-
C.
Title 31 of the Code of Federal Regulations
Title 31 of the Code of Federal Regulations is a body of U.S. federal rules governing money and finance, including regulations for anti-money laundering and financial reporting obligations.
-
D.
Title 3 of the Code of Federal Regulations
Title 3 of the Code of Federal Regulations is the section of the CFR that compiles presidential documents, including executive orders, proclamations, and other directives issued by the President of the United States.
-
E.
Title 50 of the United States Code
Title 50 of the United States Code is the portion of U.S. federal statutory law that governs national defense, intelligence, and related aspects of national security.
- F. None of above. chosen
- G. Unsure - the case is ambiguous/there is not enough information to decide.
Target entity: Title 23 of the New York Codes, Rules and Regulations Part 500 Target entity description: Title 23 of the New York Codes, Rules and Regulations Part 500 is a New York State Department of Financial Services regulation that sets mandatory cybersecurity requirements for covered financial institutions operating in the state.
-
A.
Title 23 of the United States Code
Title 23 of the United States Code is the primary body of federal law that regulates highways and related transportation programs in the United States.
-
B.
Title 49 of the Code of Federal Regulations
Title 49 of the Code of Federal Regulations is the section of U.S. federal law that governs transportation, including safety standards and rules for moving people and goods by road, rail, air, and water.
-
C.
Title 31 of the Code of Federal Regulations
Title 31 of the Code of Federal Regulations is a body of U.S. federal rules governing money and finance, including regulations for anti-money laundering and financial reporting obligations.
-
D.
Title 3 of the Code of Federal Regulations
Title 3 of the Code of Federal Regulations is the section of the CFR that compiles presidential documents, including executive orders, proclamations, and other directives issued by the President of the United States.
-
E.
Title 50 of the United States Code
Title 50 of the United States Code is the portion of U.S. federal statutory law that governs national defense, intelligence, and related aspects of national security.
- F. None of above. chosen
Statements (51)
| Predicate | Object |
|---|---|
| instanceOf |
New York State regulation
ⓘ
cybersecurity regulation ⓘ financial services regulation ⓘ |
| abbreviation | 23 NYCRR 500 ⓘ |
| appliesTo |
banks regulated by the New York State Department of Financial Services
ⓘ
covered entities regulated by the New York State Department of Financial Services ⓘ insurance companies regulated by the New York State Department of Financial Services ⓘ licensed lenders regulated by the New York State Department of Financial Services ⓘ money transmitters regulated by the New York State Department of Financial Services ⓘ virtual currency businesses regulated by the New York State Department of Financial Services ⓘ |
| complianceDate | 2018-03-01 ⓘ |
| effectiveDate | 2017-03-01 ⓘ |
| enforcedBy | New York State Department of Financial Services NERFINISHED ⓘ |
| geographicScope | operations involving New York State or New York residents ⓘ |
| goal |
improvement of cybersecurity posture of regulated financial institutions
ⓘ
protection of consumers’ nonpublic information ⓘ |
| hasSection |
500.01 Definitions
ⓘ
500.02 Cybersecurity Program ⓘ 500.03 Cybersecurity Policy ⓘ 500.04 Chief Information Security Officer ⓘ 500.05 Penetration Testing and Vulnerability Assessments ⓘ 500.06 Audit Trail ⓘ 500.07 Access Privileges ⓘ 500.09 Risk Assessment ⓘ 500.11 Third Party Service Provider Security Policy ⓘ 500.17 Notices to Superintendent ⓘ |
| jurisdiction | New York State NERFINISHED ⓘ |
| legalBasis | New York Financial Services Law NERFINISHED ⓘ |
| regulator | New York State Department of Financial Services NERFINISHED ⓘ |
| regulatoryArea |
data protection
ⓘ
information security ⓘ operational risk management ⓘ |
| requires |
access controls and identity management
ⓘ
annual certification of compliance ⓘ application security standards ⓘ audit trail systems ⓘ board or senior officer approval of the cybersecurity policy ⓘ cybersecurity awareness training for personnel ⓘ cybersecurity event reporting to the New York State Department of Financial Services ⓘ designation of a Chief Information Security Officer ⓘ encryption of nonpublic information in transit and at rest or use of compensating controls ⓘ implementation of cybersecurity controls based on risk assessment ⓘ incident response plan ⓘ maintenance of a cybersecurity program ⓘ maintenance of a written cybersecurity policy ⓘ multi-factor authentication or risk-based authentication ⓘ oversight of third-party service provider cybersecurity risk ⓘ penetration testing and vulnerability assessments ⓘ periodic risk assessments ⓘ secure disposal of nonpublic information ⓘ |
| subject | cybersecurity requirements for financial institutions ⓘ |
How these facts were elicited
The pipeline generated the facts above by prompting gpt-5.1 with this entity's name + description and the instruction below.
You are a knowledge base construction expert. Given a subject entity and a description of it, return factual statements that you know for the subject as a JSON list of dictionaries(triples), where keys must be "subject", "predicate" and "object". The number of facts may be very high, between 25 to 50 or more, for very popular subjects. For less popular subjects, the number of facts can be very low, like 5 or 10. # Requirements - If you don't know the subject at all, return an empty list. - If the subject is not a named entity, return an empty list. - Include at least one triple where predicate is "instanceOf". - Do not get too wordy. - Separate several objects into multiple triples with one object.
Subject: Title 23 of the New York Codes, Rules and Regulations Part 500 Description of subject: Title 23 of the New York Codes, Rules and Regulations Part 500 is a New York State Department of Financial Services regulation that sets mandatory cybersecurity requirements for covered financial institutions operating in the state.
Referenced by (1)
Full triples — surface form annotated when it differs from this entity's canonical label.