The general counsel plays a critical role in a company’s cybersecurity, especially in high-profile events, as the blame the Yahoo GC shouldered in the 2014 breach revealed. The GC must have the necessary authority to ensure the company develops appropriate proactive measures and must be able to take a leadership position after an event has occurred. Ronald Sarian, vice president and general counsel of eHarmony, spoke with the Cybersecurity Law Report about how the GC can obtain and exercise his or her authority, and his own efforts to develop incident response plans, training, communication and escalation protocols. He also discussed how he built a strong relationship with the company’s technical teams, what he learned from the 2012 cyber attack on eHarmony and what in-house counsel can learn from the DLA Piper breach. See also “Strategies for In-House Counsel Responsible for Privacy and Data Security
” (Feb. 22, 2017) and “Increasing Role of Counsel Among Operational Shifts Highlighted by Cyber Risk Management Survey
” (Nov. 16, 2016).