Sign up to save your podcasts
Or
Share DtSR Episode 176 - 2015 InfoSec Legal Review
Share to email
Share to Facebook
Share to X
Share to email
Share to Facebook
Share to X
Or
DtSR Episode 176 - 2015 InfoSec Legal Review
We open up our 2016 year interviewing Shawn Tuma on the show. Shawn is our legal eagle, and a regular contributor to the podcast. This episode ran a little bit long (OK a lot long) but I think you'll enjoy the show...
In this episode...
- Most important cybersecurity-related legal developments of 2015
- Tectonic Shift that occurred with “standing” in consumer data breach claims
- Discussion of law prior to Neiman Marcus case, and post Neiman Marcus
- Does this now apply to all consumer data breach cases?
- Immediate impact? Companies now liable?
- Lesson is in seeing the trend and how incrementalism works
- Tectonic Shift that occurred with “standing” in consumer data breach claims
- Regulatory Trends
- FTC & SEC gave hints in 2014, post-emergence of Target details
- Wyndham challenged authority – came to fruition in August 2015
- SEC not far behind – significant case in September 2015
- Aggressiveness of FTC is substantial – FTC v. LabMD … all over LimeWire
- Officer & Director Liability
- 2014 – SEC Comm. fired the warning shot … pointed the finger
- Shareholder derivative litigation
- Individual liability of IT / Compliance / Privacy “officers”
- Major 2016 Legal Trends
- Regulatory enforcement … which, by the way, is why NIST is becoming default
- Shareholder Derivative – much more likely than consumer class actions at this time
- Lessons from both of these: when you need to persuade the “money folks” that they need to act, mention D&O Liability (especially Caremark) and Regulatory focus on individuals … now they're in the cross-hairs
- Realization that cybersecurity is more of a legal issue than anything else (IT or business) b/c it is the legal requirements and consequences that ultimately drive everything
Have something to say? Let's hear it.
Support the show
>>> Please consider clicking the link above to support the show!
-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=
YouTube home: https://youtube.com/playlist?list=PLyo0dkKRvfVtWXjRxNISrhme1MgBj3C2U&si=scHDiTuLXSEQ9qHq
LinkedIn Page: https://www.linkedin.com/company/down-the-security-rabbithole-podcast/
X/Twitter: https://twitter.com/dtsr_podcast
View all episodes
By Rafal (Wh1t3Rabbit) Los
4.3
9696 ratings
We open up our 2016 year interviewing Shawn Tuma on the show. Shawn is our legal eagle, and a regular contributor to the podcast. This episode ran a little bit long (OK a lot long) but I think you'll enjoy the show...
In this episode...
- Most important cybersecurity-related legal developments of 2015
- Tectonic Shift that occurred with “standing” in consumer data breach claims
- Discussion of law prior to Neiman Marcus case, and post Neiman Marcus
- Does this now apply to all consumer data breach cases?
- Immediate impact? Companies now liable?
- Lesson is in seeing the trend and how incrementalism works
- Tectonic Shift that occurred with “standing” in consumer data breach claims
- Regulatory Trends
- FTC & SEC gave hints in 2014, post-emergence of Target details
- Wyndham challenged authority – came to fruition in August 2015
- SEC not far behind – significant case in September 2015
- Aggressiveness of FTC is substantial – FTC v. LabMD … all over LimeWire
- Officer & Director Liability
- 2014 – SEC Comm. fired the warning shot … pointed the finger
- Shareholder derivative litigation
- Individual liability of IT / Compliance / Privacy “officers”
- Major 2016 Legal Trends
- Regulatory enforcement … which, by the way, is why NIST is becoming default
- Shareholder Derivative – much more likely than consumer class actions at this time
- Lessons from both of these: when you need to persuade the “money folks” that they need to act, mention D&O Liability (especially Caremark) and Regulatory focus on individuals … now they're in the cross-hairs
- Realization that cybersecurity is more of a legal issue than anything else (IT or business) b/c it is the legal requirements and consequences that ultimately drive everything
Have something to say? Let's hear it.
Support the show
>>> Please consider clicking the link above to support the show!
-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=
YouTube home: https://youtube.com/playlist?list=PLyo0dkKRvfVtWXjRxNISrhme1MgBj3C2U&si=scHDiTuLXSEQ9qHq
LinkedIn Page: https://www.linkedin.com/company/down-the-security-rabbithole-podcast/
X/Twitter: https://twitter.com/dtsr_podcast
More shows like Down the Security Rabbithole Podcast (DtSR)
View all
Hacked
184 Listeners
Security Now (Audio)
2,002 Listeners
Defensive Security Podcast - Malware, Hacking, Cyber Security & Infosec
369 Listeners
Risky Business
373 Listeners
SANS Internet Stormcenter Daily Cyber Security Podcast (Stormcast)
637 Listeners
CyberWire Daily
1,016 Listeners
Smashing Security
322 Listeners
Click Here
414 Listeners
Darknet Diaries
8,001 Listeners
Hacking Humans
314 Listeners
CISO Series Podcast
188 Listeners
Defense in Depth
73 Listeners
Cyber Security Headlines
134 Listeners
Risky Bulletin
44 Listeners
Hacker And The Fed
169 Listeners