Support Centre

You have out of 5 free articles left for the month

Signup for a trial to access unlimited content.

Start Trial

Continue reading on DataGuidance with:

Free Member

Limited Articles

Create an account to continue accessing select articles, resources, and guidance notes.

Free Trial

Unlimited Access

Start your free trial to access unlimited articles, resources, guidance notes, and workspaces.

New York: Governor announces New York cybersecurity strategy

On August 9, 2023, New York State Governor Kathy Hochul announced the New York State Cybersecurity Strategy. In particular, the Strategy highlights that more than 25,000 New Yorkers were subject to cybercrimes totaling $777 million in 2022. Likewise, the Strategy provides that national-state actors are considered to threaten New York's cybersecurity.

Approach

The Strategy outlines that it aims to increase access to cybersecurity information, tools, and services so that cybersecurity resources are available to less-resourced entities. Likewise, the Strategy details that it seeks to expand the scope of New York's cybersecurity regulations, requirements, and recommendations to better protect New York's critical infrastructure. The Strategy also notes that it aims to provide advice and guidance to ensure New Yorkers have greater cybersecurity.

Nex steps

Notably, the Strategy outlines the aim to build cybersecurity capabilities at State Government entities and systems, including the New York Security Operations Center. Similarly, the Strategy stipulates the need for greater collaboration between key stakeholders, such as through the New York Division of Homeland Security and Emergency Services (DHSES) Cyber Incident Response Unit with local governments, and the New York State Department of State's Local Government Efficiency grant program for the modernization of local government cybersecurity programs.

In addition, the Strategy establishes the need for regulation of the cybersecurity of critical infrastructure, noting cybersecurity protections already in place for the financial and energy sector. More practically, the Strategy also notes the need to raise awareness of cybersecurity through the publication of advice and guidance tailored to specific audiences, providing groups with an authoritative source. Finally, the Strategy recommends greater investment in New York State cybersecurity education.

You can read the press release here and the Strategy here.