This an outline for the AM16 session entitled "Getting the Board on Board: Explaining Privacy and Security Risks to the Board (When the “If” Becomes “When”)"
The session will cover important recent U.S. Securities and Exchange Commission (SEC) developments since the ACC 2013 Annual Meeting and will also include highlights from the 2014 proxy season. The program will review significant enforcement actions and trends as well as recent SEC developments related to proxy advisory firms, cybersecurity, conflict minerals, social media, whistleblowing and disclosure reform. The SEC Update session will be a fast-moving program; come equipped with a working knowledge of the 1933 Act and the 1934 Act.
Employees are the front line of your information security defense. While technological protections are essential (for example, antivirus software, firewalls, spam filters, etc.), none are as effective as a vigilant end user. These are checklists of measures of which every user should be aware.
This article describes 2015 cyber audit guidance from the Office of Compliance Inspections and Examinations (“OCIE”) of the U.S. Securities and Exchange Commission (“SEC”), and measures taken by companies in response.
When a significant data breach happens, first responders face significant challenges under extreme pressure. This panel will provide an overview of the current environment in which data breaches are addressed in litigation and regulatory investigations. The panelists will walk you through what happens behind the scenes when a potential breach is identified, investigated and notified and the ensuing regulatory investigations and class action litigation proceedings. Having provided a real-world perspective, the panel will then discuss effective ways to prepare now, so that your company is ready to handle a breach situation well. Panelists will provide concrete examples of measures taken in advance of a breach that make a difference when it happens, including evaluating exposures, reserving and insurance to protect the bottom line; managing vendors and coordinating with others when sensitive data is shared and effective ways to keep your board informed about cybersecurity.
This checklist includes key considerations for effectively addressing privacy and data security. It also lists federal- and state-level initiatives related to privacy and data security.
This is a list of some basic action items to consider, given the widespread and ongoing impact of WannaCry ransomware, along with the likelihood of spin-off ransomware coming in the near future.
This article focuses on the main vulnerabilities and best practices in data protection - a view from the inside.
Faced with new adopters of technology — or perhaps “never adopters”? Technology is rapidly evolving, and in the healthcare world, companies constantly encounter dilemmas when faced with the business need to implement new technologies in harmony with archaic legal standards. This session will address numerous technology issues, including those with medical devices, software as a device, mobile applications, risks, benefits, and the global element. Come learn the legal risks and benefits around emerging technology (such as mobile health) and how to best partner with your IT and business colleagues without betting the company.
The session will cover important recent US Securities and Exchange Commission (SEC) developments since the 2014 ACC Annual Meeting. The program will review significant enforcement actions and trends as well as recent SEC developments related to cybersecurity, conflict minerals, social media, whistleblowing and disclosure reform. Presenters will also examine those sections of Dodd–Frank that matter most to corporate and securities lawyers in their day-to-day practices, including providing advice to management and board members. They will review the network of regulations that have been adopted pursuant to those sections, and report on the status of regulations not yet adopted by the SEC. The session will be a fast-moving program; come equipped with a working knowledge of the 1933 Act and the 1934 Act.