As anticipated (see these articles from American Banker and Reuters), the New York State Department of Financial Services released these revised Cybersecurity Requirements For Financial Services Companies today - reportedly following its consideration of comments submitted on the initial proposal during the 45-day comment period that ended November 14th. As previously reported, various aspects of the initial proposal launched in mid-September (reported on here) were met with significant opposition by numerous regulated banking and insurance industry organizations.
The updated proposed regulation, which was submitted to the New York State Register on December 15th and published today, will be finalized following a 30-day notice and public comment period.
See this Corporate Counsel article and additional resources on our Cybersecurity topical page, and stay tuned for more analysis of the revisions in next week's Society Alert.