Follow Patrick Linkedin Twitter Facebook
Email Patrick Email
Legal Issues
Jul 15, 2015

Cybersecurity Vigilance In The Boardroom

Sponsored Content provided by Patrick Mincey - Criminal Defense Attorney, Cranfill Sumner & Hartzog LLP

Businesses of all sizes in every industry are bombarded with increasing numbers of articles, proposed standards, and advice on what companies should be doing to protect their own informational assets and their customers’ personal data. As the number of data breaches increases, so too does the scrutiny of federal regulators and the plaintiffs’ bar. 
 
In the past several years, not only the FTC and FCC but also the SEC, whose mission is to protect shareholders, have shown growing interest in cybersecurity issues and in ensuring corporations are vigilant in their data management. In the last year, two companies victimized by hackers who stole credit card information have faced high profile civil lawsuits seeking to hold corporate directors and officers liable for damages arising from these crimes. In our hyper-connected, cyber-reliant world, directors, officers and management of all companies must be resilient by educating themselves on both corporate and individual risks related to cybercrime.
 
Certainly, corporate officers cannot be expected to become corporate IT experts. However, while neither Congress nor the courts have expressly outlined the extent of a director’s duty of care with respect to data security, several recent federal cases offer guidance that both directors and officers could follow in advance of a corporate data-security breach which potentially exposes sensitive information of third parties that the company possesses. 

  • Make data security and resources devoted to those areas a regular part of the agenda at board meetings, including regular presentations on these topics by IT officers.
  • Consider designating one of the board’s committees or specific officers to have primary oversight on data security and ensure that the company’s data-protection measures are discussed regularly at meetings of the committee or specific officers.
  • Periodically retain third-party consultants to assess and audit the company’s data protection systems and protocol. 
  • Document steps taken to remediate identified data-security concerns.
  • Identify individuals to orchestrate the company’s response to a data-breach, including legal counsel, IT, customer service, public relations and any other industry specific personnel. 
  • Identify protocols for those individuals to require thorough investigation of any alleged data breaches, including meetings with senior officers as appropriate, while ensuring documentation of the response. 
Cybersecurity has become an issue which corporate officers are expected to anticipate and to manage, and federal and state agencies are proactively inquiring into companies’ cybersecurity practices. As it becomes increasingly necessary for all businesses to prevent and respond to cybercrime, companies will be required to take concrete action which evidences diligence and good faith efforts to protect the sensitive consumer information in their possession.
 
Patrick Mincey is a trial lawyer in Wilmington, where he founded the Criminal Defense Group at Cranfill Sumner & Hartzog LLP. His criminal practice ranges from representing individuals and corporate clients who are targets, subjects or witnesses in federal and state white collar proceedings to “blue collar” defendants charged with murder, drug conspiracies and assaults. To contact Patrick Mincey, call (910) 777-6017 or email him at [email protected].  

Wbj insights revised 0510 61715110749
Ico insights

INSIGHTS

SPONSORS' CONTENT
Dallas headshot 300x300

Why You'll Need an Advisor Team

Dallas Romanowski - Cornerstone Business Advisors
Deedeegasch 10218121741

Preventing Alcohol Liability for Your Social Gathering

Deedee Gasch - Cranfill Sumner & Hartzog LLP
Chris coudriet headshot 300x300 10211545555

For These Things and More, I Am Thankful

Chris Coudriet - New Hanover County Government

Trending News

Blaze Pizza Set To Open Wilmington Location Next Week

Jessica Maurer - Dec 11, 2018

Pender County To Get Another Distribution Firm

Christina Haley O'Neal - Dec 13, 2018

Junction 421 Replaces Osteria Cicchetti In Monkey Junction

Cece Nunn - Dec 12, 2018

Recruiters Talk Challenges In Hiring And Retaining Tech Talent

Johanna Cano - Dec 12, 2018

'Most Intriguing' Talks Focus On Economic Projects, Inclusion Efforts

Christina Haley O'Neal - Dec 11, 2018

In The Current Issue

Rulmeca Rolls Into New Space

A Wilmington-based company that produces motorized pulleys for a variety of markets has moved into a new, larger space to meet an increasing...


Top Stories No. 8: Voters Usher In Party Change

2018 Year in Review: November election results left the New Hanover County Board of Commissioners with a Democratic majority, which has not...


Top Stories No. 4: GenX Actions Take Shape

2018 Year in Review: GenX remained a widely-discussed topic in 2018, which is ending with the first proposed settlement in a legal case agai...

Book On Business

The 2018 WilmingtonBiz: Book on Business is an annual publication showcasing the Wilmington region as a center of business.

Order Your Copy Today!


Galleries

Videos

2018 Power Breakfast - Dishing on the Restaurant Biz
2018 WilmingtonBiz Expo - Keynote Lunch with Eric Dinenberg, Rouse Properties
2017 Health Care Heroes