Data security breaches are increasing at an alarming rate. Boards want more visibility and understanding regarding this area of risk—as well as more efforts to mitigate the risk.
Any company that accepts, transmits or stores payment cardholder data or other personally identifiable information is vulnerable, including retailers, professional service forms, colleges, hotels, technology providers, and non-profits. Failure to comply with the vast array of state and federal laws governing data privacy and security can mean costly penalties, loss of customers and decreased market share, among other costs. Properly assessing your company's risk is an important first step in implementing effective risk management strategies across your business.
This webinar discussed state and federal data privacy and security laws, including practical recommendations on compliance and best practices for avoiding data security risks. Key topics discussed include:
- Sources of cyber breaches
- Assessing your company’s vulnerability to breaches
- Practical tips to prevent breaches
- Insurance considerations
- Legal consequences of breaches
- Why counsel ( both internal and external) should be concerned about this risk
This webinar is the first in a series which will address data security, compliance and breach prevention and risk mitigation. Be sure to check the web site for information on the subsequent webinars.
You can view a recording of the webinar or download the slides.
ABOUT OUR PRESENTERS
Sandra Sheets Gardiner, Partner, Data Protection & Breach Practice Sandra Sheets Gardiner is a partner in the firm's Technology Group and co-chair of the Data Protection and Breach Practice at MMM. Sandra counsels technology companies and large end users in complex technology transactions. She advises these clients in a variety of mission-critical transactions, including outsourcing matters, joint ventures, strategic alliances, technology procurement and acquisition, management of intellectual property assets, data management and compliance and privacy and security issues. |
Dan Schroeder, CPA, MBA, CISA, CIA, CISM, CIPP/IT, PCI QSA Dan is HAW's partner-in-charge of Information Assurance Services. He has over 25 years of experience in IT operations and risk management functions at a Fortune 100 company and in client serving roles with leading CPA firms and technology providers. Dan is the immediate ex-chairperson of the AICPA Information Technology Executive Committee and serves on the AICPA Peer Review Task Force for SOC Reporting. He also regularly leads training at national AICPA conferences on the subjects of SOC reporting for SSAE 16 and SAS 70, and other aspects of IT auditing and risk management. |
SouWei Brune, Senior Vice President |