As cyber incidents escalate in number and severity, so do the stakes for CISOs, who must navigate the pressures of arguing for resourcing, implementing robust cybersecurity measures, and managing the aftermath of breaches. That role now comes with increased regulatory scrutiny and potential personal civil and criminal liability. In light of these heightened risks, we will discuss why CISOs should insist on additional legal and contractual protections when evaluating positions, such as indemnification clauses, liability insurance, and clear definitions of their roles and reporting responsibilities. We will also discuss emerging statutory and regulatory legal risks faced by CISOs and emphasize the crucial pre- and post-incident support provided by cyber counsel. Cyber counsel plays a vital role by providing the legal and regulatory basis that supports the CISO’s findings and needs in navigating compliance and risk management. Their expertise aids in mitigating legal risks, ensuring that security measures align with legal standards. We will also discuss aligning statutory with standards-based compliance mapping, the crucial distinction between “commercially reasonable” and “defensible” – and why CISO’s should be focused on the latter through effective documentation, third-party audits, and continuous regulatory adaptation.
This presentation will provide guidance for CISOs to better safeguard themselves while enhancing the organization’s overall cybersecurity posture. Join us to gain insights into navigating the increased scrutiny and legal liability that define the modern CISO’s role.
Presenters:
Steven Teppler, Chief Cyber/Legal Officer, Mandelbaum Barrett
Tom Scurrah, VP Programs and Content, CyberRisk Alliance
Who Can Attend:
Open to anyone. Heads of Cyber, CISOs, and emerging cyber leaders will benefit most. Other roles that would benefit include cyber practitioners, risk officers, and cyber-law professionals.
Registration:
Click to register