On June 16, Avi Gesser, Stephanie Cipolla, and special guests Art Ehuan from Crypsis and Ed Cabrera from Trend Micro discussed the hallmarks of a reasonable corporate cybersecurity program for the purposes of defending litigation or responding to regulatory inquiries, including:
- Technical controls (MFA, access rights, encryption, network segmentation, endpoint detection, etc.)
- Administrative controls (policies, procedures, training, resources, vendor management, etc.)
- Governance (management and board oversight)
- Resilience (incident response, tabletops, logging, documentation, lessons learned, threat sharing, etc.)
Here is the link to the Webcast: Debevoise Data Strategy & Security Webcast on Reasonable Security
To subscribe to the Data Blog, please click here.