Tantleff Comments on Popularity of Government-Created Cybersecurity Framework
19 February 2019
Partner Aaron Tantleff was quoted in a Law360 article, “NIST Cybersecurity Framework Still Going Strong 5 Years On,” about the fifth anniversary of a government-created cybersecurity framework that provides companies with assessment tools that help them evaluate and strengthen their approach to managing cybersecurity risk.
Tantleff said the widespread adoption of the framework has not only enabled companies to substantially improve their cybersecurity posture by giving them concrete benchmarks by which to better judge the effectiveness of their programs, but also has handed them a new defense against third-party complaints such as class actions and regulatory probes. “By adopting the cybersecurity framework, companies are able to refute a claim that their cybersecurity practices were deficient, lacking, or otherwise not appropriate,” he said. “While we all recognize that the adoption of the cybersecurity framework – or another standard – cannot and won’t prevent a security incident, the adoption and compliance with the standard will help elevate the security posture of the environment and lessen the likelihood and severity of a cyber-incident, and will also help an organization become more resilient.”
Tantleff said the widespread adoption of the framework has not only enabled companies to substantially improve their cybersecurity posture by giving them concrete benchmarks by which to better judge the effectiveness of their programs, but also has handed them a new defense against third-party complaints such as class actions and regulatory probes. “By adopting the cybersecurity framework, companies are able to refute a claim that their cybersecurity practices were deficient, lacking, or otherwise not appropriate,” he said. “While we all recognize that the adoption of the cybersecurity framework – or another standard – cannot and won’t prevent a security incident, the adoption and compliance with the standard will help elevate the security posture of the environment and lessen the likelihood and severity of a cyber-incident, and will also help an organization become more resilient.”
People
Related News
23 April 2024
In the News
David Sanders Discusses Lessons Learned from General Counsel Leadership Program
Foley & Lardner LLP partner David Sanders recently joined a panel discussion with members of The Vanguard Network’s General Counsels Advisory Group to discuss the evolving role of the general counsel.
23 April 2024
In the News
Claire Marblestone Discusses HHS Final Rule on Protected Health Information Disclosure
Foley & Lardner LLP Claire Marblestone assessed the U.S. Department of Health and Human Services’ final rule that bars providers, health plans, and other entities covered by the Health Insurance Portability and Accountability Act from disclosing protected health information in a Healthcare Dive article.
22 April 2024
In the News
Scott Ellis Comments on Big Law Recruiting Ramp Up – “Right out of the box, you’re looking at them as new hires”
Foley & Lardner LLP partner Scott Ellis offers insight on the rise of early recruitment by major law firms and its impact on law students in the Bloomberg Law article, “Big Law Skips Ahead of On-Campus Recruiting in Talent Race."