New York just required beefed up cybersecurity measures at banks and insurers

The new measures require banks, insurance companies, and other financial services institutions regulated by DFS to establish and maintain a cybersecurity program. All seven steps of a new "incidence response plan" need to be in place by March 1.