When and How Legal and Information Security Should Engage on Cyber Strategy: Assessments and Incident Response (Part Two of Three)

As regulators increasingly blend privacy and security issues, privacy officers and CISOs need to interact frequently to develop a healthy relationship for effective protection of key data. Our three-part series offers legal and technical expert advice on when and how these professionals should be communicating to build a strong working relationship for robust cybersecurity and data privacy programs. This second part examines how both teams can coordinate on incident response and for risk and privacy impact assessments. Part one covered how to structure corporate governance for optimal collaboration between these two groups. Part three will tackle coordination between legal and security on vendor assessments and in the M&A context. See “How Cyber Stakeholders Can Speak the Same Language (Part One of Two),” (Jul. 20, 2016); Part Two (Aug. 3, 2016).

To read the full article

Continue reading your article with a CSLR subscription.