Making the Case for ‘Reasonable’ Cybersecurity

May 29, 2024 at 06:53AM In litigation, the standard of proof varies for criminal and civil cases. Regulators overseeing enterprise cybersecurity practices rely on the concept of “reasonable cybersecurity,” which lacks a precise definition. Quantifying cyber risk is crucial in determining what constitutes a “reasonable” cybersecurity defense, with regulatory frameworks such as NIST CSF and … Read more