Evan Norris, Corey Omer, Richard Jeens

The task of helping a company manage its response to a global cyber incident continues to grow in complexity. This panel examines some of the different dimensions involved – from the core incident response, to assessing potential heads of loss, to prioritizing and coordinating regulatory and other notifications across jurisdictions, to managing public company disclosure requirements – all with a focus on the particular challenges these issues pose in the global context.

Evan Norris, Partner, Cravath, Swaine & Moore
Corey Omer, Partner, Davies
Richard, Jeens, Partner, Slaughter & May

Readings:

01.-Information-Commissioner-Office-Ransomware-Guidance

02.-European-Data-Protection-Board-Breach-Notification-Guidance

03.-UK-GDPR-Breach-Notification-Guidance

04.-National-Cyber-Security-Centre-Supply-Chain-Guidance

05.-SEC-Press-Release-and-Fact-Sheet-on-Proposed-Rule

06.-Lloyds-Market-Bulletin-on-State-Backed-Cyber-Attack-Exclusions

07.-Executive-Order-Improving-the-Nations-Cybersecurity

08.-NIST-Press-Release-on-Cybersecurity-Guidance-for-Supply-Chain-Risk-Management

09.-OFAC-Updated-Advisory-on-Potential-Sanctions-Risks-for-Facilitating-Ransomware-Payments

10.-DHS-Cyber-Mission-Overview-and-Fact-Sheet

11.-FINRA-2022-Report-on-Examination-and-Risk-Monitoring-Program

12.-NIST-Framework-for-Improving-Critical-Infrastructure-Cybersecurity

13.-CISA-Cyber-Incident-Reporting-for-Critical-Infrastructure-Act-CIRCIA

13b.-CISA-CIRCIA-RFI

14.-DOJ-Comprehensive-Cyber-Review

List-of-Materials-Managing-a-Glocal-Cyber-Incident

Canadian-Securities-Administrators-Multilateral-Staff-Notice-51-347-Disclosure-of-cyber-security-risks-and-incidents

PIPEDA-Findings-2022-004-Investigation-into-MGM-breach-highlights-how-to-assess-risk-and-need-for-timely-assessment

Corey Omer

Partner
Davies

Evan Norris

Partner
Cravath, Swaine & Moore

Richard Jeens

Partner
Slaughter and May

Category: Uncategorized