Insurers in Connecticut must develop a comprehensive cybersecurity program by Oct. 1, in keeping with a law adopted by the state legislature last year, the Connecticut Insurance Department said in a bulletin Monday.
By February, insurers and most health care centers must certify that they are in compliance with the law, and that they have records to prove it. Third-party service providers have until October 2021 to set up measures to protect computer systems and networks against ransomware attacks, data theft and other intrusions, the bulletin notes.
Some smaller companies may be exempt...
Comments