SecureTheVillage

What Every Business Leader Needs – A Reasonable Approach to Reasonable Security

Source: SecureTheVillage

Date: 10/20/2022

Focus Areas: Cybersecurity & Privacy Laws and Regulations, Reasonable Cybersecurity

Intended for: Attorneys - Cyber, Boards of Directors, CIOs, CTOs, IT Directors, CISOs, Information Security Managers, Cyber Risk Managers / Insurance Brokers, Executives

Additional Resources: Reasonable Security 2022

Following last year’s successful symposium, this year’s event in support of Cybersecurity Awareness Month returns to the topic of reasonable security.

Ask ten cybersecurity professionals what “reasonable security” is and you’ll likely get ten different answers. That’s because – truth be told – what counts as “reasonable security” is a work in progress. Notwithstanding the lack of clarity as to what is – and what isn’t – reasonable, organizations may be legally responsible for having reasonable information security practices … and in Ohio, Connecticut, and Utah having “reasonable security practices” can serve as a “get out of jail free” card should you be sued as a result of a cyber incident.

The absence of a clear and unambiguous specification of reasonableness makes it imperative for business owners, Boards, executives, and their trusted advisors to know how to think through “reasonableness.”

Join SecureTheVillage and our expert panel of information security professionals for a workshop-style conversation on how to think through reasonable security.

Leave with a framework for ensuring your information security practices are reasonable.

  • Your information risk exposure
  • Your information risk tolerance
  • Your information risk management practices

Who should attend

  • Business owners, Board members, executives
  • Attorneys, accountants, insurance professionals, bankers, management consultants, other trusted advisors
  • Managed service provider (MSP), managed security service provider (MSSP), technology advisors, CIOs, CISOs

Agenda

  • Introduction and overview of the day
  • Session 1: Identifying your risk exposure & opportunities; Q&A and Discussion
  • Session 2: Financial and legal consequences of a cybersecurity event; Q&A and Discussion
  • Session 3: Elements of “reasonable security”; Q&A and Discussion
  • Wrap-up and final thoughts

Our Expert Panel

  • Robert Braun, JD, Privacy and Cybersecurity Attorney, Jeffer Mangels Butler & Mitchell
  • M. Scott Koller, JD, Privacy and Data Security Attorney, Baker & Hostetler
  • David Lam, Partner / CISO, Miller Kaplan
  • Jason Meshekow, Risk Management / Insurance, intouch Insurance Services, SecureTheVillage Member of the Board
  • Alex Rayter, Principal, Phoenix 2.0
  • Stan Stahl, PhD, Information Security Manager, Miller Kaplan; President, SecureTheVillage (Facilitator)
  • George Usi,CEO Omnistruct, Co-Chair CA IPv6 Task Force, SecureTheVillage Member of the Board
  • Barry Weber,ITIL, CISM, CIPP/US, vCISO & Privacy Practice Leaders, Assured SPC

Related Resources

Reasonable Security 2022 A Reasonable Approach to Reasonable Security, the Sequel Minimum Reasonable Information Security Practices

Become A CyberGuardian

Protect your community: take the CyberGuardian Pledge, join our email list, get invited to events.

Take the Pledge

SUPPORT US

SecureTheVillage is a community-based response to the cybersecurity and privacy crisis. We are a 501c(3) nonprofit with a vision of a cybersecure global village. We invite you to join with us as together we make the vision a reality. It takes the village.

Be a CyberPartnerDonate