According to a story in today’s New York Law Journal, it’s a common question in certain regulatory circles: “Will the New York State Department of Financial Services bring an enforcement action under its cybersecurity regulation, and if so, when?’  The probable answers are ‘yes’ and ‘soon.'”  As discussed in the story, “a number of traditional factors that animate decisions about enforcement point to a likelihood in the near term of an enforcement proceeding against one or more regulated entities for a violation of the DFS cybersecurity regulation, known as “Part 500.” (23 N.Y.C.R.R. §500.)”