August 23, 2017

August 23, 2017

Subscribe to Latest Legal News and Analysis

August 22, 2017

Subscribe to Latest Legal News and Analysis

August 21, 2017

Subscribe to Latest Legal News and Analysis

Cybersecurity Best Practices for Corporate Leadership

Addressing cybersecurity at the senior leadership or board level requires a multi-pronged, enterprise-wide approach. Here are five best practice guidelines corporate leaders can use to help guide their organization’s cybersecurity risk management strategy.

Own it

To succeed, a cybersecurity risk management strategy must be addressed at the highest level—senior leadership or, where applicable, the board. It’s true what the experts say: cybersecurity is no longer just an IT issue. Senior leadership and boards are uniquely situated to coordinate risk management across various levels and departments of the organization, and this level of leadership has become critical to managing cyber risks.

Empower management and set expectations

Set clear expectations about management’s duty to develop a comprehensive, realistic strategy for every level of the organization. With those expectations established, set management up for success by providing concrete support in the form of an appropriate budget and staff.

Know your risks

Effective leadership requires information. Stay informed and updated on organization-specific cyber risks. Make connections to experts in the field and pay attention to industry updates and learn to use that expertise to anticipate and stay ahead of changes.

Lead

Provide high-level risk strategy to help management prioritize cybersecurity risks. With its big picture outlook, an informed senior leadership team is in the best position to determine how to respond to certain categories of cyber risk. Assisted by expert advice, create specific plans for each risk category. And don’t forget insurance.

Prepare for trouble

Develop policies and procedures to follow in the event of a breach and understand senior leadership’s role in that response. Cybersecurity breaches happen rapidly and require many fast decisions. Build a detailed plan and prepare a carefully selected rapid response team in advance.

© 2017 Dinsmore & Shohl LLP. All rights reserved.

TRENDING LEGAL ANALYSIS


About this Author

Kurt R. Hunt, Dinsmore Shohl, Regulatory Compliance Attorney, Corporate Transactions Lawyer, Ohio,
Associate

Kurt focuses his practice on telecommunications and public utilities law, advising clients on general corporate and administrative issues, regulatory compliance, transactions, privacy obligations, and intellectual property matters. He is also an experienced litigator, and routinely represents clients in state and federal courts, as well as before administrative agencies and public utility commissions.

Knowing that public utilities operate inside a highly-regulated and specialized environment, Kurt is adept at tailoring his approach to fit each...

(513) 977-8101