Law 550: Legal Issues of Cybersecurity and Data Breach Response

Fall 2019 Class-by-Class Course Schedule

Thursdays, 2:00 PM - 3:50 PM, Room 4046

August 29^th

Introduction

Paper Topic Discussion

Current Events

Incident Response, Law Enforcement and the Counsel as Quarterback

Materials

Yahoo’s Warning to GCs: Your Job Description Just Expanded (Big-Time), by David Fontaine and John Reed Stark (March 2017)

September 5^th

Schedule Review (Here’s Where We Are, Here’s Where You Ought to Be)

Paper Topic Discussion, Current Events

Incident Response, Law Enforcement and the Counsel as Quarterback (Continued)

Materials

Yahoo’s Warning to GCs: Your Job Description Just Expanded (Big-Time), by David Fontaine and John Reed Stark (March 2017)

September 12^th

Schedule Review (Here’s Where We Are, Here’s Where You Ought to Be)

Paper Topic Discussion, Current Events

Incident Response, Law Enforcement and the Counsel as Quarterback (Continued)

Materials

Think the SEC EDGAR Data Breach Involved Insider Trading? Think Again. By John Reed Stark (D&O Diary, Law 360) (October 2017)

September 19th

Schedule Review (Here’s Where We Are, Here’s Where You Ought to Be)

Paper Topic Discussion, Current Events

Incident Response, Law Enforcement and the Counsel as Quarterback (Continued)

Materials

Cybersecurity: The SEC’s Wake-up Call to Corporate Directors, by John Reed Stark and David Fontaine (March 2018)

Cyber Awareness to Cyber Expertise: The Evolution of Board Cyber Risk Management, by Phyllis Sumner and Nick Oldham (January, 2016)

September 26^th

Schedule Review (Here’s Where We Are, Here’s Where You Ought to Be)

Current Events

Incident Response, Law Enforcement and the Counsel as Quarterback (Continued)

Materials

An Oft Overlooked PCI Incident Response Approach, by John Reed Stark (March 2015)

October 3rd

Schedule Review (Here’s Where We Are, Here’s Where You Ought to Be)

Current Events

Counsel as Quarterback and Data Breach Workflow (Continued)

Cyber Insurance

Financial Regulators, Law Enforcement and Data Breaches

Materials

Cybersecurity Due Diligence: A New Imperative, by John Reed Stark (June 2017)

Who gets Coverage? by Scott Godes (BTLaw Cybersecurity Blog, 2017)

October 17th

Schedule Review (Here’s Where We Are, Here’s Where You Ought to Be)

Current Events

Financial Regulation, Law Enforcement and Data breaches (cont)

Data Breaches, Cybersecurity and Boards of Directors

Materials

Here’s what went wrong for Equifax in those first 48 hours, by John Carlin and David Newman (September, 2017)

Ensuring Best Practices in the Investigation of an Incident, by David Fagan, Ashden Fein and David Bender (March, 2016)

The Equifax and SEC Data Breaches: Takeaways, Reminders & Caveats, by John Reed Stark (September 2017)

October 24th

Current Events

Complete Any Unfinished Topics

Data Breach Call (Guest: Chris Ullman, Former Managing Director & Global Partner, Director of Global Communications, The Carlyle Group; Now President, Ullman Communications)

Materials

Chris Ullman Ted Talk

October 31^st

Current Events

Intake from Digital Forensics Firm (Guest: Bret Padres, CEO, Crypsis)

November 7^th

Current Events

Board Briefing (Guest: (David Fontaine, Former CEO, Kroll)

November 14^th

SEC/FINRA Regulatory Interphase

(Guests: Greg Faragasso, Assistant Director, U.S. Securities and Exchange Commission; Cameron Funkhouser, Executive Vice President, Financial Industry Regulatory Authority)

November 21^st

Current Events

Law Enforcement Briefing (Guest: Kimberly Kiefer Peretti, Co-chair of Alston & Bird’s Cybersecurity Preparedness & Response Team and National Security & Digital Crimes Team)

December 5^th

Vendor Briefing (Beckage Cloud Services and Triidelity) (Guest: Jennifer Beckage, Founder, Becckage PLLC)

Papers Due

Discussion of Simulation Presentations