Cybersecurity – Debevoise Data Blog

Cybersecurity

Erez Liebermann to Speak at FT Cyber Resilience Summit, June 22, 2023, Washington D.C.

By: Erez Liebermann June 1, 2023

On Thursday, June 22 at 10:25 AM (EDT), Erez Liebermann will speak on a panel entitled Policies and priorities to strengthen resilience at the Financial Times Cyber Resilience Summit: Technology…

Cybersecurity

Lessons from The Financial Stability Board’s Report on Cyber Incident Reporting

By: Luke Dembosky, Avi Gesser, Erez Liebermann, Kristin Snyder, Charu Chandrasekhar and Tristan Lockwood May 31, 2023

Big businesses, especially those with a global footprint and operating in regulated sectors, are increasingly confronted with new and diverging cyber incident reporting requirements. A single incident—even a relatively minor…

Cybersecurity

Debevoise & Plimpton Hosts Second Annual Cyber Counsel Conference

By: Luke Dembosky, Avi Gesser and Erez Liebermann May 24, 2023

On May 18, 2023 Debevoise & Plimpton hosted the Second Annual Cyber Counsel Conference. Peers on cyber legal teams gathered for a day of candid conversation, exclusive guests and lots…

Announcement

Luke Dembosky, Erez Liebermann and Jim Pastore named to Cybersecurity Docket’s “Incident Response 50” List for 2023

By: Luke Dembosky, Erez Liebermann and Jim Pastore May 4, 2023

Luke Dembosky, Erez Liebermann and Jim Pastore have been named to Cybersecurity Docket’s “Incident Response 50” list for 2023. The list recognizes the “50 best incident response legal and compliance…

Cybersecurity

EU Digital Operational Resilience Act (DORA): Management Obligations and the Role of the Board

By: Robert Maddox and Tristan Lockwood April 21, 2023

Back in November 2022, we highlighted the enactment of the EU’s Digital Operational Resilience Act (“DORA”) that will impose far-reaching operational resilience requirements and Board oversight requirements on almost all…

Cybersecurity

A Late Winter Blizzard of SEC Cybersecurity Rulemaking: the Proposed BD Cybersecurity Rules and Expanded Reg S-P and Reg SCI Obligations

By: Luke Dembosky, Avi Gesser, Erez Liebermann, Marc Ponchione, Julie M. Riewe, Jeff Robins, Kristin Snyder, Charu Chandrasekhar, Sheena Paul, Suchita Mandavilli Brundage, Michael R. Roberts, Mengyi Xu and Ned Terrace March 20, 2023

On March 15, 2023, the U.S. Securities and Exchange Commission (the “SEC”) released a suite of proposed new rules (the “Proposed Rules”) that include: Proposed new cybersecurity rules for broker-dealers,…

Cybersecurity

National Cybersecurity Strategy (Part 1): The White House Urges Private and Public Action

By: Luke Dembosky, Avi Gesser, Erez Liebermann, Jim Pastore, Michael R. Roberts, Mengyi Xu, Noah L. Schwartz, Stephanie Thomas, Jarrett Lewis and Jacob Hochberger March 16, 2023

On March 2, 2023, the White House Office of the National Cyber Director (“ONCD”) released the Biden Administration’s (the “Administration”) long-awaited National Cybersecurity Strategy (the “Strategy”), the first since the…

Cybersecurity

Preparing for the SEC’s Cybersecurity Rules for Registered Investment Advisers, Registered Investment Companies, and Business Development Companies

By: Luke Dembosky, Avi Gesser, Erez Liebermann, Julie M. Riewe, Kristin Snyder, Charu Chandrasekhar, Suchita Mandavilli Brundage and Jarrett Lewis March 13, 2023

In February 2022, the SEC proposed its first-ever cybersecurity rules for registered investment advisers (“RIAs”) (including RIAs to private funds) and Funds (which include registered investment companies (“RICs”) and closed-end…

Cybersecurity

Erez Liebermann to Discuss Navigating Cyber Events in Compliance and Legal at SIFMA C&L Annual Seminar

By: Erez Liebermann March 3, 2023

On Tuesday, March 14 at 12:15 PM PST, Erez Liebermann will speak on a panel of other in-house and outside counsel entitled “Navigating Cyber Events in Compliance and Legal” at…

Cybersecurity

Takeaways from Proposed Changes to the NIST Cybersecurity Framework

By: Avi Gesser, Erez Liebermann, Michael R. Roberts, HJ Brehmer, Corey Goldstein, Stephanie Thomas and Jackie Dorward February 27, 2023

Risk assessments are a critical component of a robust cybersecurity program. To benchmark their risk assessments and cybersecurity maturity reviews, companies often look to recognized industry standards such as the…