Home/NY DFS 23 NYCRR 500/500 — 500/500.2(c)500.2(c)—500.2(c)>Control DescriptionEach class A company shall design and conduct independent audits of its cybersecurity program based on its risk assessment.>Cross-Framework MappingsSCFCPL-03CompareCPL-03.1CompareAsk AIConfigure your API key to use AI features.Add Key