Managing Cybersecurity Risk: Advice to Board Members
Our speakers Mike Corn of UCSD and
Natalie Prescott of Mintz will discuss practical suggestions for oversight of
cybersecurity and privacy within board risk management and governance
structures. We now live in a new world where most people are working remotely
on home networks and their own devices utilizing various videoconferencing
software apps. This new world has brought an uptick in spoofing and
phishing via text and email as well as “Zoom bombing” and online harassment.
Natalie will bring us up-to-date on CCPA (California
Consumer Privacy Act) implementation and compliance, the new law enhancing privacy rights and consumer protection for
California residents, and remind us of sensitive and confidential topics that are best
not discussed via videoconference. Mike will cover how UCSD is handling
the current situation and discuss cybersecurity breach insurance and how
organizations are deciding where to spend their money given budget restrictions
in this economic downturn.
We will have one hour of moderated
panel discussion and presentations, followed by Q&A. The webinar will
allow live video of all participants if you choose to show video. You may also
dial in via phone. Our other announced speaker will unfortunately not be able
to join due to various circumstances.
Speakers:
Michael Corn, CISO, UC San Diego
Michael Corn is the Chief Information Security Officer of the University of California at San Diego where he manages the Security Office as well as the Identity and Access Management. His areas of interest include privacy, identity management, and cloud services. He has been an active speaker and author on security and privacy and has participated in numerous Educause and Internet2 initiatives.
He is a member of the Internet2 Netplus Product Advisory Board and is the current co-chair of the Educause HEISC. Prior to joining UCSD he was the CISO & CPO and Deputy CIO of Brandeis University and was formally the CISO and Chief Privacy and Security Officer of the University of Illinois at Urbana-Champaign. He is a graduate of the University of Colorado at Boulder and the University of Illinois at Urbana-Champaign.
Natalie Prescott, Mintz San Diego
Natalie is a Certified Information Privacy Professional (CIPP/US), a published author, and an award-winning trial lawyer. She is the go-to lawyer in bet-the-company cases, class actions, and complex litigation matters. She is the first female recipient of the prestigious Outstanding Young Lawyer of the Year Award from the International Bar Association and has been listed with Super Lawyers and Top Attorneys. She defends companies in high-stakes litigation matters and assists clients with defending consumer class actions, responding to regulatory inquiries into data security practices, data breach notifications, compliance, and privacy litigation.
She has published numerous articles in the areas of privacy law, including in Bloomberg, Law 360, and the Daily Journal. She has presented at numerous conferences and events, moderated panels on privacy-related topics, and taught a course on Privacy at the USD Cyber Security Executive Program.
Gregory Bullard, AGB Advisors, Inc
Greg is a consultant helping companies understand and solve their cybersecurity and user-privacy problems in their products and services, applying strategic architectures and approaches. Greg applies his background in both vulnerability analysis (attack) and defense in products and services and believes protections that don’t take the perspective of an attacker will not be effective.
Over a 23+ year career at Qualcomm, he spent the last 15 years leading engineering of a division to develop classified vulnerability analysis and defense capabilities for the US Government, leading development of a cloud-supported security for mobile devices business, being head of Hardware Security, writing the company’s product and service cybersecurity strategy, and creating Qualcomm’s IP Protection effort. Greg has been a panelist in the EU on security and privacy, at the US Department of Treasury on Identity, as well as classified panels and hack-a-thons. Greg has been issued several patents on product security, identity protections, and privacy.
Date
Tuesday, April 14, 2020
Time
3:30 p.m.– 5:00 p.m.
Location
We will send a Zoom videoconferencing invite
closer to the date. Please download the Zoom software and practice using
it on your phone or computer 30 minutes prior to the webinar start time of
3:30PM sharp. The webinar will be recorded in case you cannot attend on
April 14 and would like to listen to it later.