How the C-Suite Should Talk About Cybersecurity
This series provides answers to questions from c-suite executives and board members about their companies' cybersecurity practices.
Published: 7 July 2016
Increasingly, c-suite executives and board members have questions about their companies' cybersecurity practices — or lack thereof. This series provides high-level answers to some of those questions, specifically focusing on the development of cybersecurity policies, incident-response plans, liability of board members and executives for data breaches and the attorney-client privilege for cybersecurity investigations.
Series Overview
- What is Cybersecurity?
- Liabilities after a Data Breach
- Attorney-client Privilege and Work Product Doctrine
- Explaining the NIST Framework
- State Laws and Breach Notification Requirements
- Data Breach and Security Vulnerability Reporting Obligations to Shareholders and the SEC
- Lawsuits stemming from Data Breaches
- Examining insurance coverage for data breaches
This content is eligible for Continuing Professional Education credits. Please self-submit according to CPE policy guidelines.
How the C-Suite Should Talk About Cybersecurity
This series provides answers to questions from c-suite executives and board members about their companies' cybersecurity practices.
Published: 7 July 2016
Contributors:
Jeffrey Kosseff
CIPP/US
Assistant Professor, Cyber Science Department
U.S. Naval Academy
Increasingly, c-suite executives and board members have questions about their companies' cybersecurity practices — or lack thereof. This series provides high-level answers to some of those questions, specifically focusing on the development of cybersecurity policies, incident-response plans, liability of board members and executives for data breaches and the attorney-client privilege for cybersecurity investigations.
Series Overview
- What is Cybersecurity?
- Liabilities after a Data Breach
- Attorney-client Privilege and Work Product Doctrine
- Explaining the NIST Framework
- State Laws and Breach Notification Requirements
- Data Breach and Security Vulnerability Reporting Obligations to Shareholders and the SEC
- Lawsuits stemming from Data Breaches
- Examining insurance coverage for data breaches
This content is eligible for Continuing Professional Education credits. Please self-submit according to CPE policy guidelines.
Tags:
Related resources
US State AI Governance Legislation Tracker
US State Privacy Legislation Tracker
Global AI Law and Policy Tracker
IAPP Global Legislative Predictions 2026
