Cybersecurity is the process of protecting internet-connected computer systems, such as hardware, software, and data, from cyber-threats. Cybersecurity is used by individuals and businesses to protect against unauthorized access to these computer systems when cyber criminals attempt to change, destroy, and steal sensitive data; extort money by making the systems unworkable; and interrupt business operations.

In New York, cybersecurity is governed by a combination of state and federal laws designed to protect computer systems and sensitive data from cyber-threats. The New York State Department of Financial Services (NYDFS) Cybersecurity Regulation (23 NYCRR 500) is a key state regulation that requires financial service companies to implement a cybersecurity program, appoint a Chief Information Security Officer, and report cybersecurity events. Additionally, the Stop Hacks and Improve Electronic Data Security Act (SHIELD Act) expands data breach notification requirements and mandates that any business holding New York residents' private information implement reasonable cybersecurity measures. At the federal level, laws such as the Computer Fraud and Abuse Act (CFAA) and the Cybersecurity Information Sharing Act (CISA) also provide a framework for criminalizing unauthorized access to computer systems and facilitating information sharing to prevent and respond to cyber threats. These regulations are designed to protect both individuals and businesses from the unauthorized access, alteration, destruction, or theft of data, as well as from attempts to extort money or disrupt business operations.