Examining the Global Impact of AI + Cyber + Data + Privacy + Law = Business Risk
The CIO Journal has an informative article, 4 Ways to Engage Executives in Cyber Risk, that discusses a handful of ideas that can be helpful for engaging company executives on the issue of cybersecurity risks. Here are the 4 steps it suggests: Host a cyber risk heat-mapping session Establish key risk and performance indicators Simulate …
Continue reading "4 Ways to Engage Executives in Cyber Risk"
An article in eCommerce Times offers a well-reasoned argument for why the NIST (National Institute of Standards and Technology) Cybersecurity Framework is the guiding force in shaping the United States' federal cybersecurity strategy: NIST Risk-Assessment Framework Shapes Federal Cybersecurity Strategy You should read it -- but only after you read the following explanation because it is …
Continue reading "The #1 Reason NIST Cybersecurity Framework is Becoming the Standard"
TAKEAWAYS: If your company intends to limit its employees access to certain information on the company network, (1) make sure appropriate technological restrictions are in place and are working; and (2) make sure there are appropriate policies or other documentation in place to show the employees subjectively knew it was off limits. When an employer …
I have read several blog posts that are stating, as a blanket proposition, that you must prove intent to defraud for CFAA claims. This, they say, comes from the recent Seventh Circuit Court of Appeals case, Fidlar Technologies v. LPS Real Estate Data Solutions, Inc., 2016 WL 258632 (7th Cir. Jan. 21, 2016) (opinion). This is …
Continue reading "Be Careful of Commentary on 7th Cir.’s Fidlar Tech CFAA “Intent to Defraud”Case"
UPDATE: The House and Senate have passed the Judicial Redress Act which gives EU citizens the right to seek redress in US courts for the misuse of their personal data. The EU - U.S. Privacy Shield signals greater cooperation between the EU Data Protection Authorities and the Federal Trade Commission, according to a Fact Sheet …
Continue reading "EU – U.S. Privacy Shield Summary & Fact Sheet for Businesses"
Officer and director liability for cybersecurity incidents is a hot topic. It will only get hotter because, when it comes to risks impacting the company, the buck stops at the Board of Directors. As it should. Cybersecurity and corporate governance law are converging to develop a duty for the Board to be involved in cybersecurity issues …
Continue reading "3 Key Points the Board Needs to Know About Cybersecurity"
In his latest Ethical Boardroom article, Shawn Tuma explains why it is important for board members to have an active role in their company's cybersecurity preparation and tells them several key steps they can take to do so. Tuma also explains why cybersecurity is as much a legal issue and business issue as it is …
Continue reading "Managing Cybersecurity Risks for Boards of Directors"
Scheef & Stone, L.L.P. is proud to be a member of Mackrell International. This video offers a short explanation of how Mackrell International works and how it can benefit our clients worldwide.
Note: this article was previously posted on Norse's DarkMatters. Where do we die first? For leaders of companies doing business in the digital world (i.e., all companies) this is the question you should be asking yourself when it comes to cyber security and crisis planning. Where does your company die first? The Sony hack shows why …
Continue reading "Learning From the Sony Hack: Where Do We Die First?"
You must be logged in to post a comment.