Resource Library

Cybercrime continues to increase and is targeting citizens, businesses and governments throughout the world, introducing unprecedented levels of vulnerability. The increasing trend of outsourcing data to third parties represents a present and imminent risk to security and data protection.<br />As cybercriminals continue to advance their techniques, their focus has shifted to theft of financial information, business espionage and accessing government information, thus threatening the ability of the law enforcement authorities to respond.

Discuss recent developments in the global regulatory landscape that impact cybersecurity compliance in the financial industry, and the sources of authority or reference for defining legal standards in this domain. Review regulatory guidance that both identifies and raises questions on what is enough to satisfy an organization’s responsibilities to customers, employees, business partners and other stakeholders with respect to cybersecurity. Identify best practices for effective implementation of cybersecurity measures. Explore how a multinational financial institution can structure its cybersecurity program at the enterprise level without running afoul of foreign jurisdictions’ regulators. Review the state of play in civil litigation over data breaches, including plaintiff strategies for overcoming motions to dismiss based on inadequate pleadings or standing. Discuss recent settlements of major data breach class actions and their impact on future cases.

This program will explore the best practices for companies that manage vendors and cybersecurity concerns. Some of the significant questions to be addressed include: What are some best practices for vendor due diligence? How can vendor cybersecurity risks be addressed and mitigated, both contractually and otherwise? What role, if any, should in-house counsel have in vendor management?

Review recent global legal and public policy developments in the technology realm; Identify reasons many corporate counsel are unprepared to conduct adequate cybersecurity risk assessments; and Learn best practices in cybersecurity risk management and data breach crisis response.

Considering the increasingly active role general counsel play in cybersecurity strategy, risk assessment and prevention, the ACC Foundation recently released an unprecedented study of the state of cybersecurity in the corporate sector. The largest study of its kind, the report serves as a resource for in-house lawyers, corporations and boards of directors directly impacted by one of the greatest challenges and reputational risks facing companies today. This plenary session will provide key takeaways from the report that you can put into action today, as well as guidance on preserving privilege, budget allocation and collaborating with law enforcement or government agencies. Learn what general counsel experienced in data breaches wish they had known before the breach occurred and other important lessons learned.

There are two kinds of companies: those that have had a security breach and those that will have a security breach. Security incidents present numerous significant risks to companies, including negative brand and reputation attention, loss of sales or customer churn, financial penalties and legal exposure. This session will provide practical guidance from an in-house perspective on the multiple challenges posed by cybersecurity issues, best practices for data protection and steps to take in the event of an information security breach. Topics will also include insurance and vetting third-party vendors.

This program will explore the best practices for companies that manage vendors and cybersecurity concerns. Some of the significant questions to be addressed include: What are some best practices for vendor due diligence? How can vendor cybersecurity risks be addressed and mitigated, both contractually and otherwise? What role, if any, should in-house counsel have in vendor management?

This program will explore the best practices for companies that manage vendors and cybersecurity concerns. Some of the significant questions to be addressed include: What are some best practices for vendor due diligence? How can vendor cybersecurity risks be addressed and mitigated, both contractually and otherwise? What role, if any, should in-house counsel have in vendor management?

Overview of best practices in risk management. Includes discussion of enterprise risk, advising the board on risk, risk mitigation planning, cybersecurity, and third party risk from vendors and suppliers.

Provides an overview of legal aspects of homeland security including corporate viability and business continuity, cybersecurity, the SAFETY Act, the Department of Homeland Security and information sharing and the Freedom of Information Act.