This article was originally published in Corporate Compliance Insights, February 2024
Companies may find existing systems need augmenting to meet new rules
Recent amendments to the New York Department of Financial Services 23 NYCRR Part 500, which more than a half-decade ago transformed cybersecurity compliance for thousands of insurance, financial services and healthcare organizations, threaten to shake things up again by adding new requirements. Joseph Shepley of Alvarez & Marsal offers guidance to CISOs at covered organizations.
The New York Department of Financial Services’ 23 NYCRR Part 500 has been a part of the compliance landscape for insurance, financial services and healthcare organizations since 2017. Part 500 has transformed the cybersecurity posture of these covered entities, benefiting consumers, employees and other data subjects whose personal data organizations process.
While all the recent amendments to Part 500 have been the subject of considerable discussion, the changes to Section 500.13 will likely have the biggest weight, governing how covered entities manage (and dispose) of their non-public information (NPI) so they can remain Part 500 compliant.
Click the button below to read the full article and learn more about Part 500 compliance.
Read the Full Article Here
The AI Action Plan and What It Means for US Governance Going Forward
August 11, 2025
The White House’s AI Action Plan shifts federal focus from regulation to accelerating innovation, expanding infrastructure, and advancing U.S. AI leadership, while states and global regulators pursue stricter transparency and accountability measures.
Combating Increased Internal Fraud: Lessons from Recent Cases and Proactive Risk Mitigation Strategies
June 26, 2025
Recent arrests and discoveries of asset misappropriation and financial statement fraud suggest a concerning trend of increasing internal fraud in the Asia–Pacific region.
A Seat with an Expert Series: Jeremy Tilsner (Forensic Technology Edition)
August 5, 2025
In the Seat with an Expert – Forensic Technology Edition series, Managing Director Jeremy Tilsner explores the growing risks associated with artificial intelligence, forecasting a significant rise in both the volume and complexity of fraud.
The Energy Transition in Australia: A Catalyst for Emerging Litigation Risks
July 31, 2025
Australia’s energy transition is creating new opportunities for growth, but also exposing organizations to rising litigation risks tied to land use, project approvals, and misleading ESG claims. The article explores how greenwashing and bluewashing are emerging as key areas of concern, and how forensic accounting can help organizations identify and mitigate these risks.
