MD INS Info Security Program Cert


On Feb. 14, MD INS issued bulletin reminding insurers of certification.


  • MD INS issued Bulletin no. 24-6 reminding insurers, health plans, general agents, and third-party administrators of the Information Security Program Certification due.
  • Bulletin no. 23-18 set forth the requirements for having a comprehensive written information security program in place based on firm's risk assessment, see #188702.
  • Requirements
  • Per MD INS 33-103(j)(1) all such parties must file such certification with MD INS Commissioner on or before April 15 of each year, with Apr. 15, 2024, being the first.
  • The Information Security Program Certification is to be primarily filed electronically.

Regulators MD INS
Entity Types Ins
Reference Bul 24-6, 2/14/2024; Citation: MD INS 33-103;
Functions BCS; Compliance; Cyber; Legal; Reporting; Risk; Technology
Countries United States of America
Category
State
Products Insurance
Regions Am
Rule Type Final
Rule Date 2/14/2024
Effective Date 4/15/2024
Rule Id 201240
Linked to Rule :188702
Reg. Last Update 2/14/2024
Report Section US Insurance

Last substantive update on 02/16/2024