Tantleff Comments on Popularity of Government-Created Cybersecurity Framework
19 February 2019
Law360
News
Partner Aaron Tantleff was quoted in a Law360 article, “NIST Cybersecurity Framework Still Going Strong 5 Years On,” about the fifth anniversary of a government-created cybersecurity framework that provides companies with assessment tools that help them evaluate and strengthen their approach to managing cybersecurity risk.
Tantleff said the widespread adoption of the framework has not only enabled companies to substantially improve their cybersecurity posture by giving them concrete benchmarks by which to better judge the effectiveness of their programs, but also has handed them a new defense against third-party complaints such as class actions and regulatory probes. “By adopting the cybersecurity framework, companies are able to refute a claim that their cybersecurity practices were deficient, lacking, or otherwise not appropriate,” he said. “While we all recognize that the adoption of the cybersecurity framework – or another standard – cannot and won’t prevent a security incident, the adoption and compliance with the standard will help elevate the security posture of the environment and lessen the likelihood and severity of a cyber-incident, and will also help an organization become more resilient.”
Tantleff said the widespread adoption of the framework has not only enabled companies to substantially improve their cybersecurity posture by giving them concrete benchmarks by which to better judge the effectiveness of their programs, but also has handed them a new defense against third-party complaints such as class actions and regulatory probes. “By adopting the cybersecurity framework, companies are able to refute a claim that their cybersecurity practices were deficient, lacking, or otherwise not appropriate,” he said. “While we all recognize that the adoption of the cybersecurity framework – or another standard – cannot and won’t prevent a security incident, the adoption and compliance with the standard will help elevate the security posture of the environment and lessen the likelihood and severity of a cyber-incident, and will also help an organization become more resilient.”
People
Related Services
Sectors
Practice Areas
Insights
Deep Dive into Generative AI and What Will Drive Tomorrow
24 March 2023
Foley Ignite
IRS Issues Notice on Treatment of NFTs as Collectibles
24 March 2023
Innovative Technology Insights
Solis v. Coty, Inc.: A Look at Article III Standing in PFAS Consumer Products False Advertising Cases
23 March 2023
Consumer Class Defense Counsel
Real Estate Case Serves as a Reminder About Adherence to the Terms of a Franchise Agreement—Until a Court Permits Otherwise
23 March 2023
Foley Attorneys Discuss DEA Special Registration Rule in White Paper Analysis
24 March 2023
Alliance for Connected Care
Jean-Paul Ciardullo Comments on Oral Arguments in Jack Daniel’s v. VIP Products
24 March 2023
ManagingIP
Threats of Antitrust Enforcement in the Supply Chain
18 May 2023
Webinar
DTC Healthcare Conference: How to Build and Scale a Multistate DTC Telemedicine Company
28 April 2023
New York
Stewarding ESG in the Mobility Supply Chain
26 April 2023
Zoom Meeting
CXO Forum
18 April 2023
East Palo Alto, CA