Last year we explored the concept of “reasonable security” measures. We have come back to examine an underlying but even more difficult question: What legally required standard of care governs an entity’s cybersecurity practices? We consider whether the answer(s) to this question is contextually driven, or whether it is possible to divine a more generally applicable standard.
Partner, Duane Morris LLP
Executive Director, Institute for Technology Law & Policy at Georgetown Law
Counsel, Hartford Steam Boiler
Partner, Prince Lobel Tye LLC
Head of Products for Cyber, MPL, Tech, Media and Life Science, The Hartford, Hartford Financial Products
exploit of vulnerability security awareness standards risk & vulnerability assessment data security
Share With Your Community