Answer Bar: Data Security Considerations for the Corporate Client

Session 01: In-House Perspectives on Product Innovation, Data Governance and Privacy - A panel of senior privacy and compliance counsel at leading technology companies shares recent experiences and issues encountered at the cutting edge of new business models and rapidly changing legal and compliance landscapes.

Session 02: Aligning Cybersecurity with Business Operations​ - Explore the critical intersection of cybersecurity, legal compliance, and business operations. Gain practical insights on building effective partnerships between legal, cyber, and business teams. And learn how organizations can better align their cybersecurity initiatives with business objectives while navigating complex regulatory requirements and emerging technologies.

Session 03: Taking Your Incident Response Plan to the Next Level - An organization’s resiliency to a cyber-attack is critical to mitigating the operational, reputational, and legal impact of the incident. Explore the steps organizations should be taking to take their incident response plans to the next level, including harmonization among various response plans, developing detailed legal and privacy playbooks, and conducting exercises that target the most challenging issues organizations face in cyber-attacks.

Session 04: Counsel in the Crosshairs: Legal Decisions During a Data Crisis - This tabletop exercise puts attorneys at the center of a fast moving cyber incident. Legal, regulatory, and reputational consequences hang in the balance as participants collaborate to guide a fictional company through a breach response. And along the way, we’ll meet and interact with key constituents (employees, clients, service providers, regulators). Keep your head on a swivel—we may even catch a glimpse of the threat actor himself!

Session 05: Vendor Risk Management - A discussion with industry leaders on cybersecurity issues arising in vendor relationships. The panel discusses third party auditing, cyber incident notification, the recently adopted Reg S-P amendments, and vendor use of AI.

Session 06: Ensuring Operational Resilience - How quickly can your organization recover from a cyberattack? This panel examines legal and strategic approaches to maintaining operational resilience, especially in the face of disruptions to critical infrastructure or third-party vendors. Topics include incident response, third-party due diligence, and legal counsel’s role in minimizing downtime and ensuring continuity across complex systems.

Session 07: Do You Know What Your Outside Counsel is Doing to Protect Client Information? - Law firms are now targets for hackers, including nation-state actors that seek to steal sensitive and valuable client information and cause disruption and other damages. Are your outside counsel taking the appropriate steps to ensure the safety of your information?

Session 08: The Role of the Board: Before, During and After a Cybersecurity Incident - A summary from sitting board members and board governance experts on obligations, tips, and best practices for boards in preparing for and responding to cybersecurity incidents, and in affectively evaluating and addressing the attendant risks.

Session 09: The Use and Governance of AI in Legal and Compliance Departments - Engage in, and leave with actionable suggestions for, how legal and compliance teams are supporting the use of AI, from piloting a single model within the department  to supporting AI governance across the enterprise.