In light of the increasing frequency and severity of cybersecurity incidents, the management of cybersecurity and data privacy in corporations has evolved from IT and Security department concerns to an enterprise-wide risk management program, demanding the attention of every department and individual within the organization. Top level executives and directors are singled out by regulators—as well as investors and the public—and held responsible for failing to prevent or appropriately respond to data privacy and security incidents. Management is expected to dig in and become intimately familiar with the corporation’s cybersecurity risks along with the practices, standards, and procedures in place to address those risks. This panel will address board oversight of cybersecurity risks, as well as discuss emerging trends in preparing for and managing cybersecurity incidents.
Phyllis Sumner, Partner and Chief Privacy Office, King & Spaulding LLP
Sean Joyce, Principal, US Cybersecurity & Privacy Practice Leader, Americas Cybersecurity & Privacy Leader, and a member of PwC’s Global Cyber Strategy Team, PwC
Richard Walker, Partner, King & Spalding LLP
Matthew H. Baughman, Office of the Deputy Attorney General, Associate Deputy Attorney General