If you are breached and your case goes to litigation, you will likely be asked to demonstrate “due care” and that your controls were “reasonable.” Many are surprised to learn that a breach by itself does not constitute negligence in most cases. But judges will ask a set of questions that help them determine whether […]
ANALYZING RISK FOR REASONABLE AND APPROPRIATE SAFEGUARDS Glossary for DoCRA Terms and definitions.
Duty of Care Risk Analysis: Leveraging the New Risk Assessment Method to Reduce Liability Duty of Care Risk Analysis (DoCRA) is a new standard that describes processes for evaluating information security risks and their safeguards so that the resulting analysis
Who is Responsible for a Data Breach. “While accountability starts with the CEO and corporate board, cybersecurity is a shared responsibility across every function and level of an organization.”
HALOCK partner Chris Cronin will be moderating a NetDiligence® Cyber Risk Summit panel with industry experts on risk based analysis process and legal, regulatory and security best practices. Attend the event to learn how to best establish ‘duty of care’ for cybersecurity.
CIS RAM (Center for Internet Security® Risk Assessment Method) is an information security risk assessment method that helps organizations implement and assess their security posture against the CIS Controls™ cybersecurity best practices. CIS RAM, a free tool, provides step-by-step instructions, examples, templates, and exercises for conducting a cyber risk assessment.
Why a Chicago-Based Cyber Security Firm Just Released its Prized IP. By Chris Cronin, ISO 27001 Auditor, Partner