#CISOliability

Orgs Face Major SEC Penalties for Failing to Disclose Breaches

by

February 23, 2024 at 01:41PM Companies and CISOs face potential fines from the SEC if cybersecurity and data-breach disclosure processes don’t comply with new rules. The SEC can use various enforcement tools, including injunctions, disgorgement, penalties, and barring individuals from roles. CISOs are concerned about personal liability and executives and companies may face reputational damage … Read more

Navigating the New Age of Cybersecurity Enforcement

by

January 4, 2024 at 10:06AM The SEC filed a lawsuit against SolarWinds and its CISO, significantly impacting the liability of CISOs. A panel discussion highlights key strategies for CISOs, including building alliances with general counsel, establishing FBI connections, adhering to standards, coordinating legal counsel, considering D&O insurance, and embracing the three pillars of alignment, clarification, … Read more