Breaking Murphy's Law in a Network Security Breach
Sponsored By:
1
About Advisen Advisen generates, integrates, analyses and communicates unbiased, real-time insights for the global community of commercial insurance professionals. As a single source solution, Advisen helps the insurance industry to more productively drive mission-critical decisions about pricing, loss experience, underwriting, marketing, transacting or purchasing commercial insurance. www.Advisen.com
2
Many Thanks to our Sponsor!
3
Breaking Murphy's Law in a Network Security Breach Corner.Advisen.com www.cyberrisknetwork.com
• Recording of today’s webinar • Copy of these slides
4
Today’s Moderators Josh Ladeau Technology Practice Lead Allied World
David Bradford President Research & Editorial Group Advisen Ltd.
5
Today’s Panelists John Mullen Partner Lewis Brisbois Bisgaard & Smith LLP
Mark Greisiger President NetDiligence® Bo Holland Founder & CEO AllClear ID 6
Question: What are some of the common mistakes in managing a breach?
Josh Ladeau Technology Practice Lead Allied World
John Mullen Partner Lewis Brisbois Bisgaard & Smith LLP
David Bradford President, Research & Editorial Group Advisen Ltd.
Mark Greisiger President NetDiligence®
Bo Holland Founder & CEO AllClear ID
7
Question: What are the potential consequences of a poorly-managed breach response?
Josh Ladeau Technology Practice Lead Allied World
John Mullen Partner Lewis Brisbois Bisgaard & Smith LLP
David Bradford President, Research & Editorial Group Advisen Ltd.
Mark Greisiger President NetDiligence®
Bo Holland Founder & CEO AllClear ID
8
Question: What should companies be doing in advance of a cyber incident to prepare?
Josh Ladeau Technology Practice Lead Allied World
John Mullen Partner Lewis Brisbois Bisgaard & Smith LLP
David Bradford President, Research & Editorial Group Advisen Ltd.
Mark Greisiger President NetDiligence®
Bo Holland Founder & CEO AllClear ID
9
Question: How can organizations know the types of services they may require to respond to a breach, and how do they identify the best vendors for their needs?
Josh Ladeau Technology Practice Lead Allied World
John Mullen Partner Lewis Brisbois Bisgaard & Smith LLP
David Bradford President, Research & Editorial Group Advisen Ltd.
Mark Greisiger President NetDiligence®
Bo Holland Founder & CEO AllClear ID
10
Question: If a company suspects their network has been breached, who do they call first?
Josh Ladeau Technology Practice Lead Allied World
John Mullen Partner Lewis Brisbois Bisgaard & Smith LLP
David Bradford President, Research & Editorial Group Advisen Ltd.
Mark Greisiger President NetDiligence®
Bo Holland Founder & CEO AllClear ID
11
Question: If the company has an insurance policy providing breach response services, how should the risk manager assure that the company gets full benefit of the services and protections purchased?
Josh Ladeau Technology Practice Lead Allied World
John Mullen Partner Lewis Brisbois Bisgaard & Smith LLP
David Bradford President, Research & Editorial Group Advisen Ltd.
Mark Greisiger President NetDiligence®
Bo Holland Founder & CEO AllClear ID
12
Question: What typically happens during the first 48 hours following the discovery of a breach? The first week? The first month?
Josh Ladeau Technology Practice Lead Allied World
John Mullen Partner Lewis Brisbois Bisgaard & Smith LLP
David Bradford President, Research & Editorial Group Advisen Ltd.
Mark Greisiger President NetDiligence®
Bo Holland Founder & CEO AllClear ID
13
Question: When should the breach be disclosed? What are the potential consequences of revealing a breach too quickly, or of delaying notification?
Josh Ladeau Technology Practice Lead Allied World
John Mullen Partner Lewis Brisbois Bisgaard & Smith LLP
David Bradford President, Research & Editorial Group Advisen Ltd.
Mark Greisiger President NetDiligence®
Bo Holland Founder & CEO AllClear ID
14
Question: If the breach involves payment card information, are there additional incident handling requirements?
Josh Ladeau Technology Practice Lead Allied World
John Mullen Partner Lewis Brisbois Bisgaard & Smith LLP
David Bradford President, Research & Editorial Group Advisen Ltd.
Mark Greisiger President NetDiligence®
Bo Holland Founder & CEO AllClear ID
15
Question: When should law enforcement agencies get involved?
Josh Ladeau Technology Practice Lead Allied World
John Mullen Partner Lewis Brisbois Bisgaard & Smith LLP
David Bradford President, Research & Editorial Group Advisen Ltd.
Mark Greisiger President NetDiligence®
Bo Holland Founder & CEO AllClear ID
16
Question: How has insurance coverage evolved to respond to the needs of organizations experiencing a breach?
Josh Ladeau Technology Practice Lead Allied World
John Mullen Partner Lewis Brisbois Bisgaard & Smith LLP
David Bradford President, Research & Editorial Group Advisen Ltd.
Mark Greisiger President NetDiligence®
Bo Holland Founder & CEO AllClear ID
17
Subscribe to the Cyber Risk Network •
The Cyber Risk Network is the definitive authority for anyone involved in or interested in the cyber insurance risk sector.
•
We offer exclusive news, analysis, and data, driven by Advisen’s unparalleled cyber database.
•
Members will enjoy the following network benefits: -Access to Advisen’s proprietary data -Leverage Advisen’s domain expertise for exclusive news and analysis -Exclusive networking opportunities within niche communities
•
Learn more via - http://www.cyberrisknetwork.com/about/
18
Many Thanks to our Sponsor!
19
Many Thanks to our Speakers! Josh Ladeau Technology Practice Lead Allied World John Mullen Partner Lewis Brisbois Bisgaard & Smith LLP Mark Greisiger President NetDiligence® Bo Holland Founder & CEO AllClear ID
20
Breaking Murphy's Law in a Network Security Breach Corner.Advisen.com www.cyberrisknetwork.com
• Recording of today’s webinar • Copy of these slides
21
Upcoming Advisen Webinars Visit http://corner.advisen.com/advisen_webinars.html for the 2014 webinar schedule
Cyber Sanity: Innovative Approaches to Data Security Thursday, June 26, 2014 at 11am EDT Register via: http://w.on24.com/r.htm?e=797748&s=1&k=3048ADD61380609B915B8F1C0367A9C0
22
Upcoming Advisen Conferences Visit http://corner.advisen.com/advisen_conference.html for the 2014 webinar schedule
Cyber Risk Awards, New York Wednesday, June 18, 2014 at 6pm EDT Register via: http://events.SignUp4.com/AdvisenCyberRiskAwards2014
Cyber Risk Insights Conference, New York Tuesday, October 28, 2014 at 8am EDT Register via: http://events.SignUp4.com/AdvisenCyberInsightsNewYork2014
23
Contact Us Advisen Ltd. 1430 Broadway 8th Floor New York, NY 10018 http://corner.advisen.com/ Phone: +1.212.897.4800
[email protected]
24