Ransomware, Cyber Insurance, and the GC's Role: Current Executive Order, Risks Related to Payment, FBI Guidance
Recording of a 90-minute CLE video webinar with Q&A
This CLE course will discuss how general counsel can assist and address a company's risk when facing a ransomware attack. The panel will discuss the Executive Order issued in May 2021 by the Biden administration instituting tech standards for businesses acting as government contractors to limit potential ransomware attacks. The panel will advise when and how cyber insurance can be utilized and what risks still exist when payment is made, if that possibility even exists, in light of the attacks on Colonial Pipeline and SolarWinds.
- Biden Executive Order
- Ransomware: overview, SolarWinds attack, Colonial Pipeline attack
- FBI and other government agency alerts
- Role and considerations of general counsel
- Payment of a ransom does not avoid other costs to the company
- Review of cyber insurance coverage
- Adjust your compliance program to the changing regulatory enforcement risks
- FBI success in Colonial Pipeline case and future enforcement actions
The panel will review these and other key topics:
- What is the history of recent ransomware attacks on U.S. companies?
- How can general counsel implement a ransomware contingency plan? When should payment be considered?
- What issues with cyber insurance should counsel consider when assessing policies?
- How is the Biden Executive Order impacting companies' ransomware preparedness policies?
- How has the success of the FBI in recouping the Colonial Pipeline ransom affected future attacks?
Holland & Knight
Mr. Desai is a cybersecurity, data privacy, and white collar defense and government investigations attorney. He has... | Read More
Mr. Desai is a cybersecurity, data privacy, and white collar defense and government investigations attorney. He has extensive experience in handling cyber intrusions and data breaches, trade secret thefts, emerging technology matters and complex white collar investigations. With a computer science and physics background, Mr. Desai is highly skilled and knowledgeable to advise companies on novel issues at the intersection of law, technology and data privacy. He is also a Certified Information Privacy Professional in the United States (CIPP/US) with the International Association of Privacy Professionals (IAPP). Mr. Desai is a former federal prosecutor in the Cyber and National Security Section and the Economic Crimes Section at the U.S. Attorney's Office for the Western District of Pennsylvania.Close
Rachel V. Rose, JD, MBA
Rachel V. Rose – Attorney at Law
Ms. Rose is an attorney in Houston, Texas, whose primary practice areas are health care, with a focus on HIPAA and... | Read More
Ms. Rose is an attorney in Houston, Texas, whose primary practice areas are health care, with a focus on HIPAA and securities law. She is extensively published and presents on a wide variety of topics. Professionally, she has worked on Capitol Hill, interned at HHS and the Royal College of Nursing in London, as well as working on Wall Street.Close
Elizabeth (Beth) Waller
Chair, Cybersecurity and Data Privacy Practice
Ms. Waller is a cybersecurity and data privacy attorney who uses her significant experience in technology to counsel... | Read More
Ms. Waller is a cybersecurity and data privacy attorney who uses her significant experience in technology to counsel clients on cybersecurity risk management, incident response, and privacy laws. As Chair of the firm’s Cybersecurity and Data Privacy Practice, her experience on the intersection of technology and the law is extensive. Ms. Waller is a Certified Information Privacy Professional with both U.S. and Europe designations (CIPP/US & CIPP/E) and a Certified Information Privacy Manager (CIPM) from the International Association of Privacy Professionals. Clients ranging from Fortune 200 companies to municipalities and universities, and spanning industries such as manufacturing, healthcare, banking, and energy depend on Ms. Waller for advice and counsel on risk management, data security, and regulatory compliance. She also advises clients in high-tech fields such as biotechnology and software development and has worked with clients pioneering new technologies such as blockchain and IoT devices. Ms. Waller specializes in critical infrastructure cybersecurity incident response, with experience leading teams bringing complicated systems back online after cyber attacks. She has led cyber crisis management responses across different industries and has experience with the intersection of NERC CIP, GLBA, and HIPAA with cybersecurity incident response.Close