Top Privacy, Cyber & Regulatory Mistakes Boards Can Avoid
[vc_row css_animation=”” row_type=”row” use_row_as_full_screen_section=”no” type=”full_width” angled_section=”no” text_align=”left” background_image_as_pattern=”without_pattern”][vc_column][vc_empty_space height=”20px”][vc_separator type=”normal”][vc_column_text]As boards respond to the challenges and limitations regarding privacy, cyber and related regulatory issues, one of their key goals is to avoid costly mistakes, with a focus on making savvy, highly effective decisions that will safeguard the organization. As privacy and cybersecurity converge, it is believed that unauthorized access of private user information is symptomatic of these profound shifts. Massive data breaches, such as those of the Marriott that impacted 500 million guests, and the Yahoo breach that affected 3 billion users, only emphasize that the implications for how organizations manage these issues are imperative.
Our expert panelists will discuss:
What are some of the key pitfalls that directors should avoid when dealing with privacy, cyber and regulatory issues?
What impact has implementation of the California Consumer Privacy Act (CCPA) had and where are we headed?
How can organizations build public trust and confidence, beyond compliance, with privacy laws?
Senior Vice President, Information Security Officer, American Specialty Health
Tina Mitchell
Chief Executive Officer, President & Director, Autoweb, Inc.
Jared Rowe
Partner, US Chair and Global Co-Chair, Data Protection, Privacy and Security Practice, and US Chair and Global Co-Chair, Cybersecurity Practice; DLA Piper
Andrew Serwin
Partner, Moss Adams
Kevin Villanueva
Senior Vice President, Information Security Officer, American Specialty Health
Tina Mitchell
Tina Mitchell is Senior Vice President, Information Security Officer at American Specialty Health, a premier independent and privately-owned specialty health organization. In this role, she is responsible for the enterprise security risk management strategy focused on the protection of corporate information and technology assets. In addition to being a strategic partner and trusted advisor to executive leadership and the board of directors, she oversees the enterprise security program which includes information security governance, risk management, security technologies, physical security, vendor management, security awareness training, incident response, disaster recovery and business continuing planning, and compliance with state and federal privacy/security regulations.
In Tina’s 25 years with American Specialty Health she has held various positions within Information Technology ranging from hands-on systems administration to management positions. Just prior to becoming dedicated to Enterprise Security, Tina held the position of Vice President of IT Operations.
Tina holds a Bachelor of Arts in Business and Information Systems, from National University, and a Master of Science in Executive Leadership from the University of San Diego’s Graduate School of Business. She is a Certified Information Security Professional (CISSP) and a Certified Information Security Manager (CISM).
Chief Executive Officer, President & Director, Autoweb, Inc.
Jared Rowe
Mr. Rowe was appointed President and Chief Executive Officer, and as a director, of AutoWeb in April 2018. Prior to joining AutoWeb, Jared served as Senior Operating Executive at Cerberus Operations and Advisory Company and as Chief Executive Officer at The Real Yellow Pages (YP), a local marketing solutions provider and Cerberus portfolio company. Before his work with YP and Cerberus, Jared held several senior leadership positions within Cox Automotive, where he was President of Kelley Blue Book, President of Autotrader, and ultimately the President of Cox Automotive’s Media Solutions Group, where he was responsible for leading the Autotrader, Kelley Blue Book, Dealer.com and Haystak businesses. Jared has a Master of Business Administration from the Stephen M. Ross School of Business at the University of Michigan at Ann Arbor and received his Bachelor of Business Administration, Automotive Marketing from Northwood University.
Partner, US Chair and Global Co-Chair, Data Protection, Privacy and Security Practice, and US Chair and Global Co-Chair, Cybersecurity Practice; DLA Piper
Andrew Serwin
Andrew Serwin is one of the pre-eminent privacy and security practitioners in the world. Clients describe him as a “rock star lawyer,” “a walking encyclopedia on anything data protection related” and “a tireless worker, holding onto the ever-shifting puzzle pieces of the law in this area in a way that other privacy lawyers cannot” (Chambers USA). For his work in data protection and privacy, Andrew is an inaugural inductee into the 2017 Legal 500 Hall of Fame, comprised of outstanding US lawyers who have been recommended as Legal 500 Leading Lawyers for the last six consecutive years. He was also recently named one of the Daily Journal‘s Top 100 Lawyers in California for 2016 and a National Law Journal 2015 Cyber Security & Data Privacy Trailblazer, recognizing the 50 people “who have helped make a difference in the fight against criminal cyber activity.”
Andrew offers clients the practical experience that comes from having counseled on many of the highest profile privacy and cybersecurity matters of recent years, with the breadth of knowledge that comes from authoring the premier global treatise on privacy and cybersecurity.
With extensive business and leadership experience, Andrew understands his clients’ businesses, industries and unique challenges. He has founded, advised and served on the board of directors of many companies, particularly in the transformational technology and media sectors He also holds advanced certifications in governance, including as a National Association of Corporate Directors (NACD) Governance Fellow and Carnegie Mellon University’s Computer Emergency Response Team (CERT) certification in cyber oversight.
Andrew is a noted public speaker and author and the only law firm lawyer ever to be named to Security Magazine‘s prestigious “25 Most Influential Industry Thought Leaders.” He wrote the leading treatise on privacy and security, Information Security and Privacy: A Guide to Federal and State Law and Compliance and Information Security and Privacy: A Guide to International Law and Compliance (West 2006-2016), collectively a 5,500-page, three-volume treatise that examines all aspects of privacy and security laws, published by Thomson-West. The treatise has been called “the best privacy sourcebook,” “an indispensable resource for privacy professionals at all levels,” and “a book that everybody in the information privacy field should have on their desk.” He has published numerous other books and law review articles and routinely authors client alerts on cutting-edge privacy and cybersecurity developments.
Partner, Moss Adams
Kevin Villanueva
Kevin has been in the information technology field since 1997 and leads the firm’s IT infrastructure and security practice. He specializes in government, not-for-profit, private entity, higher education, and health care clients. His areas of practice include IT security assessments; penetration testing; PCI DSS assessments; HIPAA compliance auditing; HITRUST readiness and validation assessments; strategic technology planning; disaster recovery and business continuity planning; policies, procedures, and documentation development; and project management. In addition, he has designed and conducted technology assessments based on the internationally recognized ISO/IEC 27001/2, NIST, and COBIT standards, and has served as technical counsel on hundreds of technology security projects.
ACCREDITATION: All participants may receive 1 hour of MCLE and CPE education credit. Information on obtaining a certificate will be provided at the end of the webinar.
[/vc_column_text][vc_empty_space height=”275px”][vc_separator type=”normal”][vc_column_text]
