Law 550: Legal Issues of Cybersecurity and Data Breach Response

Spring 2019 Class-by-Class Course Schedule

Thursdays, 2:00 PM - 3:50 PM, Room 4044

(February 7th class will likely on Friday February 8th, Location TBD)

January 10^th

Introduction

Paper Topic Discussion

Current Events

Incident Response, Law Enforcement and the Counsel as Quarterback 

Materials

Yahoo’s Warning to GCs: Your Job Description Just Expanded (Big-Time), by David Fontaine and John Reed Stark (March 2017)

 

January 17^th

Schedule Review (Here’s Where We Are, Here’s Where You Ought to Be)

Paper Topic Discussion, Current Events

Incident Response, Law Enforcement and the Counsel as Quarterback (Continued)

Materials

Yahoo’s Warning to GCs: Your Job Description Just Expanded (Big-Time), by David Fontaine and John Reed Stark (March 2017)

 

January 24^th

Schedule Review (Here’s Where We Are, Here’s Where You Ought to Be)

Paper Topic Discussion, Current Events

Financial Regulators, Law Enforcement and Data Breaches 

Materials

Think the SEC EDGAR Data Breach Involved Insider Trading? Think Again. By John Reed Stark (D&O Diary, Law 360) (October 2017)

 

January 31^st

Schedule Review (Here’s Where We Are, Here’s Where You Ought to Be)

Paper Topic Discussion, Current Events

Financial Regulators, Law Enforcement and Data Breaches (continued)

Data Breaches, Cybersecurity and Boards of Directors

Materials

Cybersecurity: The SEC’s Wake-up Call to Corporate Directors, by John Reed Stark and David Fontaine (March 2018)

Cyber Awareness to Cyber Expertise: The Evolution of Board Cyber Risk Management, by Phyllis Sumner and Nick Oldham (January, 2016)

 

February 8^th (Rescheduled from February 7^th)

Schedule Review (Here’s Where We Are, Here’s Where You Ought to Be)

Current Events

Data Breaches, Cybersecurity and Boards of Directors (continued)

Managing Retail Data Breaches (Guest:  David Fontaine, Sr. Advisor, Duff & Phelps, Former CEO, Kroll) 

Materials

An Oft Overlooked PCI Incident Response Approach, by John Reed Stark (March 2015)

 

February 14th

Schedule Review (Here’s Where We Are, Here’s Where You Ought to Be)

Current Events

Cyber Insurance and Cybersecurity Due Diligence

Materials

Cybersecurity Due Diligence: A New Imperative, by John Reed Stark (June 2017)

Who gets Coverage? by Scott Godes (BTLaw Cybersecurity Blog, 2017) 

 

February 21st

Schedule Review (Here’s Where We Are, Here’s Where You Ought to Be)

Current Events

After the Breach: Digital Forensics and Remediation

Materials

Here’s what went wrong for Equifax in those first 48 hours, by John Carlin and David Newman (September, 2017)

Ensuring Best Practices in the Investigation of an Incident, by David Fagan, Ashden Fein and David Bender (March, 2016)

The Equifax and SEC Data Breaches: Takeaways, Reminders & Caveats, by John Reed Stark (September 2017)

 

February 28th

Current Events

Complete Any Unfinished Topics

Data Breach Call (Guest:  Bruce Carton, Editor, Cybersecurity Docket)

 

March 7^th

Current Events

Intake from Digital Forensics Firm (Guest: Bret Padres, CEO, Crypsis)

 

March 21^st

Current Events

Board Briefing (Guest: David Fontaine, Sr. Advisor, Duff & Phelps, Former CEO, Kroll) 

 

March 28^th

Current Events

Law Enforcement Briefing (Guest: Jason Smolanoff, Former Supervisory Special FBI Agent, Current Head of Cybersecurity, Kroll);

Insurance Briefing (Guest: Scott Godes, Partner, Co-Chair, data Security and Privacy Practice, Barnes & Thornburg)

 

April 4^th

Current Events

Federal/State Regulatory Interphase (Guest: Val Szczepanik, SEC; Cam Funkhauser, FINRA)

 

April 11^th

Vendor/Partner/Employee Briefing (Guest: Paul Luehr, Partner, Practice Leader, Privacy and Security,  Faegre, Baker Daniels)

Current Events

Final Class Topics

Papers Due

 

April 18^th

Current Events

Final Lecture/Make-up Time for Any Topics Not Covered Adequately