As a teaser to my presentation at SecureWorld – Dallas last week, I did a brief interview with SecureWorld and talked about three of the points I would make in my lunch keynote, The Legal Case for Cybersecurity. If you’re going to SecureWorld – Denver next week, join me for the lunch keynote on Thursday (11/2) as I will again be making The Legal Case for Cybersecurity.
In the SecureWorld article, Why InfoSec Teams Need to Think with a ‘Legal’ Mind, Before an Incident, we discuss these three points:
- There are three general types of “cyber laws” that infosec needs to understand;
- Sadly, far too many companies do not take cybersecurity seriously until after they have had a significant incident; and
- Companies’ need for implementing and continuously maturing a cyber risk management program (such as my CyberGard).