SEC Chairman Jay Clayton speaking at a Columbia University School of International and Public Affairs cybersecurity event. Photo by Daniel Clark/ALMThe Key to Preventing Corporate Cyberattacks: Board of Directors Awareness
A panel at the 'Developing a Defensible Cyber Strategy' conference hosted by Columbia University School of International and Public Affairs said that having a company's board of directors recognize the importance of a robust security program is key to stopping cyberattacks.
December 10, 2018 at 11:30 AM
3 minute read
The original version of this story was published on Corporate Counsel
The world of cybersecurity is constantly evolving and part of that evolution has been counsel and directors becoming more hands-on and interested in the issue, a panel at the “Developing a Defensible Cyber Strategy” discussion said Thursday in New York at the Harmonie Club.
The panel, which was hosted by the Columbia University School of International and Public Affairs, was composed of Connie Brenton, chief of staff and senior director of legal operations at NetApp Inc. and CEO and chairwoman of the board of Corporate Legal Operations Consortium (CLOC); Jason Healey, a senior research scholar at the School of International and Public Affairs; C. Allen Parker, senior executive vice president and general counsel of Wells Fargo who joined the company from Cravath, Swaine & Moore in 2017; Joseph C. Shenker, chairman of Sullivan & Cromwell; Phil Venables, partner and chief operational risk officer at Goldman Sachs; and U.S. Securities and Exchange Commission Chairman Jay Clayton.
The panel agreed that having a company's board of directors recognize the importance of a robust cybersecurity program is key to stopping future hacks. Venables said that compared with five years ago, boards of directors have come light years in realizing its importance. He said he believes this is so because on almost every board now there is at least one member who has experienced a cyberattack themselves.
That personal experience is partly why Parker is aware of the threats. While working at Cravath, Swaine & Moore, the firm was the victim of an attack by a nation-state, which woke him up because Cravath, he said, had a high level of cybersecurity.
“It was a sobering thing for that to happen to us. If it could happen to a firm at our level of preparedness, it could happen to anyone,” Parker said.
Getting boards of directors in line with cybersecurity issues does not appear to be as much of a problem as it used to be. For Wells Fargo, one of the directors is a former Air Force cybersecurity expert who lets everyone else know about the importance of a strong network infrastructure.
Venables believes that one reason boards of directors are taking a harder look at cybersecurity is that everyone now has his or her own horror stories.
“There was a point five to six years ago where a lot of people sat on multiple boards,” Venables explained. “When that happened you definitely saw this [cybersecurity] rise up in the agenda. Most directors have had personal experience being in those war rooms after a cyberincident.”
Benton said that collaboration is critical for companies to tackle cybersecurity issues. She said that if companies work together on cybersecurity issues, they will be able to save hundreds of hours of work for their legal departments and for the law firms they work with.
“There has been a strong desire to collaborate,” Benton said based on her conversations with legal operations professionals within CLOC.
This content has been archived. It is available through our partners, LexisNexis® and Bloomberg Law.
To view this content, please continue to their sites.
Not a Lexis Subscriber?
Subscribe Now
Not a Bloomberg Law Subscriber?
Subscribe Now
NOT FOR REPRINT
© 2024 ALM Global, LLC, All Rights Reserved. Request academic re-use from www.copyright.com. All other uses, submit a request to [email protected]. For more information visit Asset & Logo Licensing.
You Might Like
View AllTrending Stories
- 1Longtime Baker & Hostetler Partner, Former White House Counsel David Rivkin Dies at 68
- 2Court System Seeks Public Comment on E-Filing for Annual Report
- 3Foreign-Company Lobbyists Would Need to Register Under Proposed DOJ Regulation
- 4'Fancy Dress': ERISA Claim Accuses Plan Administrator and Cigna Affiliates of Co-Pay Maximizer Scheme
- 5The American Lawyer's Top Stories of 2024
Who Got The Work
Michael G. Bongiorno, Andrew Scott Dulberg and Elizabeth E. Driscoll from Wilmer Cutler Pickering Hale and Dorr have stepped in to represent Symbotic Inc., an A.I.-enabled technology platform that focuses on increasing supply chain efficiency, and other defendants in a pending shareholder derivative lawsuit. The case, filed Oct. 2 in Massachusetts District Court by the Brown Law Firm on behalf of Stephen Austen, accuses certain officers and directors of misleading investors in regard to Symbotic's potential for margin growth by failing to disclose that the company was not equipped to timely deploy its systems or manage expenses through project delays. The case, assigned to U.S. District Judge Nathaniel M. Gorton, is 1:24-cv-12522, Austen v. Cohen et al.
Who Got The Work
Edmund Polubinski and Marie Killmond of Davis Polk & Wardwell have entered appearances for data platform software development company MongoDB and other defendants in a pending shareholder derivative lawsuit. The action, filed Oct. 7 in New York Southern District Court by the Brown Law Firm, accuses the company's directors and/or officers of falsely expressing confidence in the company’s restructuring of its sales incentive plan and downplaying the severity of decreases in its upfront commitments. The case is 1:24-cv-07594, Roy v. Ittycheria et al.
Who Got The Work
Amy O. Bruchs and Kurt F. Ellison of Michael Best & Friedrich have entered appearances for Epic Systems Corp. in a pending employment discrimination lawsuit. The suit was filed Sept. 7 in Wisconsin Western District Court by Levine Eisberner LLC and Siri & Glimstad on behalf of a project manager who claims that he was wrongfully terminated after applying for a religious exemption to the defendant's COVID-19 vaccine mandate. The case, assigned to U.S. Magistrate Judge Anita Marie Boor, is 3:24-cv-00630, Secker, Nathan v. Epic Systems Corporation.
Who Got The Work
David X. Sullivan, Thomas J. Finn and Gregory A. Hall from McCarter & English have entered appearances for Sunrun Installation Services in a pending civil rights lawsuit. The complaint was filed Sept. 4 in Connecticut District Court by attorney Robert M. Berke on behalf of former employee George Edward Steins, who was arrested and charged with employing an unregistered home improvement salesperson. The complaint alleges that had Sunrun informed the Connecticut Department of Consumer Protection that the plaintiff's employment had ended in 2017 and that he no longer held Sunrun's home improvement contractor license, he would not have been hit with charges, which were dismissed in May 2024. The case, assigned to U.S. District Judge Jeffrey A. Meyer, is 3:24-cv-01423, Steins v. Sunrun, Inc. et al.
Who Got The Work
Greenberg Traurig shareholder Joshua L. Raskin has entered an appearance for boohoo.com UK Ltd. in a pending patent infringement lawsuit. The suit, filed Sept. 3 in Texas Eastern District Court by Rozier Hardt McDonough on behalf of Alto Dynamics, asserts five patents related to an online shopping platform. The case, assigned to U.S. District Judge Rodney Gilstrap, is 2:24-cv-00719, Alto Dynamics, LLC v. boohoo.com UK Limited.
Featured Firms
Law Offices of Gary Martin Hays & Associates, P.C.
(470) 294-1674
Law Offices of Mark E. Salomone
(857) 444-6468
Smith & Hassler
(713) 739-1250
