Risk Assessment Policy
November 25, 2020 | Other
This sample policy provides a framework for identifying risks and vulnerabilities so that controls can be adopted to address those risks and vulnerabilities.
In an effort to arm and empower businesses with free tools to help keep their businesses secure from cyber threats, the policy below was provided as a courtesy by the New York State Department of Financial Services (DFS) and is provided on an “as is” basis. This policy is intended for information purposes only and does not constitute legal advice. It contains sample text and is customizable to suit your organization. DFS assumes no liability or responsibility for any errors or omissions in the content, including as a result of changes to DFS’s regulations since the date of this policy. Some elements may not be practical for every organization and more may be required.
You can download the template by clicking “Read More” below.