Completing the risk assessment can be a challenging task. One way to make that task easier is to look to frameworks or approaches that have already been developed and become established.
By February 15, 2018, every New York licensee must certify compliance with the state's cybersecurity regulations.
Individuals who are fully covered under a firm’s program are broadly exempt.
Organizations have a lot of work to complete by February 15, 2018. Those that can't make that deadline have limited options, but there are approaches they can try.
Simply working in chronological order based on compliance dates may not be the best way to start.