Attention:
Card image cap

GDPR + NYDFS Cybersecurity Regulations: Keeping up with Compliance on a Local and Global Scale


Level: Advanced
Runtime: 59 minutes
Recorded Date: September 26, 2018
Click here to share this program
Download PDF
Closed Caption

Agenda


  • Vendor Management
  • Law vs. Technology
  • Data Hygiene
  • The Legal Patchwork
  • Key Takeaways
Runtime: 1 hour
Recorded: September 26, 2018

Description

Just when you thought you were 100% in compliance with all of these new regulations, BAM! In the last year, not only has GDPR gone into effect in the EU and Europe, but NYDFS has come out with a new set of cybersecurity provisions as well. So how are organizations -- specifically, financial institutions -- keeping pace? And what are the potential impacts on organizations who fail to meet these requirements?

This program was recorded as part of ALM and Corporate Counsel's 30th Annual General Counsel Conference on September 26th, 2018.

Provided By

General Counsel Conference
Card image cap

Panelists

Card image cap

Lawrence Montle

Chief Information Security & Privacy Officer
New York State Insurance Fund

Lawrence Montle is currently the Chief Information Security Officer and Privacy Officer at the New York State Insurance Fund (NYSIF). He is responsible for the development and implementation of a comprehensive information security plan to improve and insure agency security levels. In this role, Mr. Montle oversees the recommendation and design of targeted strategies and initiatives to effectively assess risks, maintain the security of NYSIF’s proprietary data, and ensure its protection from unauthorized use.

He also functions as a liaison to the Office of CyberSecurity and Critical Infrastructure Coordination, administering security training for agency staff and ensuring NYSIF's compliance with statewide security policies, privacy standards and controls. Prior to joining NYSIF, Mr. Montle served as internal audit director for the Department of Financial Services, where he oversaw audits conducted by the New York State Comptroller’s office and other external entities, and monitored compliance and adherence to policy review and internal controls.

Among other achievements, he implemented a comprehensive internal audit internship program to train and mentor students. Mr. Montle’s previous positions include serving as information technology director at the New York Liquidation Bureau and working at Verizon as an IT auditor, systems engineer, and network engineer for over a decade. He holds certifications in information privacy (CIPP/US), fraud examination (CFE), information systems auditing (CISA) and is licensed to practice law in N.Y. and D.C. Mr. Montle received his MBA in finance and management from Fordham University and his JD from New York Law School. He obtained his undergraduate degree from New York University.

Card image cap

John Davis

Senior Counsel & Co-Chair, eDiscovery and Information Management
Crowell Moring

John Davis is co-chair of Crowell & Moring’s E-Discovery & Information Management Practice and a member of the Litigation Group. John has over 20 years of experience advising clients on information law issues – including discovery, data analytics, privacy, cross-border transfers, cybersecurity, information governance and emergent technology – and representing companies in complex litigations. He leads responses to U.S. and foreign governmental inquiries, conducts international investigations of data breaches, and counsels companies on managing data risk in litigation and through their policies and procedures. John is an award-winning author and frequent lecturer on investigations and information law.

John received his law degree magna cum laude from the Georgetown University Law Center, where he was admitted to the Order of the Coif and served as senior articles editor of the American Criminal Law Review. Before joining Crowell & Moring, John was counsel at UBS and the head of its Global Complex Cases – E-Discovery group. John also practiced at an international law firm based out of its New York and San Francisco offices.

John is a member of the bars of the States of New York and California (inactive), the U.S. Supreme Court, the U.S. Courts of Appeals for the Second and Eleventh Circuits, and multiple federal district courts.

Card image cap

Orrie Dinstein

Global Privacy Officer
Marsh & McLennan Companies, Inc.

Orrie Dinstein is the Global Chief Privacy Officer at March & McLennan Companies. He has global responsibility for data protection, and he works closely with the Legal, Compliance, IT and Information Security teams as well as other functions to establish policies, procedures, processes and tools related to data privacy and security matters. Prior to joining Marsh & McLennan, Orrie was the Chief Privacy Officer of GE Capital.

Orrie received an LL.M. degree in intellectual property from NYU School of Law and is a graduate of the Hebrew University of Jerusalem School of Law. He is a member of the New York State Bar and the Israel Bar. He is a Certified Information Privacy Professional (CIPP) and a frequent speaker on privacy, social media and technology matters.


Card image cap

Similar Courses

Card image cap
64 minutes
"I Am Not a Cat" Proceedings in a Virtual World
Besides becoming a pop-culture catchphrase, how has the shift to a virtual environment impacted proceedings over the last year, and what changes do you believe are here to stay? Our panel of experts will examine some of the greatest challenges, faux pas, and successes in virtual proceedings over the course of this transformative time.

Women, Influence & Power in Law Conference

$65

Add to Cart
Card image cap
63 minutes
2021: The Year of the ELM
Panelists will clarify what constitutes an ELM platform, examine its unique and compelling capabilities, and discuss its strategic and tactical advantages, particularly those stemming from data-driven insights and machine-driven decision making. Attendees will gain a clear understanding of the significance of the emergence of ELM solutions, what firms and law departments can achieve with ELM platform, and practical and ethical considerations related to adopting an ELM solution.

Legalweek

$65

Add to Cart
Card image cap
97 minutes
26 Words that Created the Internet - Basics of the Communications Decency Act Section 230 Safe Harbor
This program will examine the basics of CDA 230 and its day to day affect for those who advise internet businesses as well as those who litigate against them. It will give practical guidance as to what extend internet companies can or should edit or censor the information their users contribute to their sites and to what extent those users will actually be liable.

New Media Rights

$115

Add to Cart
Card image cap
63 minutes
360-Degree View on How to Navigate a Crisis
During this session, our panel of experts will explore the following topics to arm you with a plan to protect the company and minimize long-term problems: - Building a crisis management team and understanding each person’s unique role -Preparedness – advance planning and assessing potential risk areas - First Response – responding in the critical first hours and days to minimize the long-term impact - Resolution Strategy – managing various actions stemming from the crisis to enable the best resolution for the company.

Women, Influence & Power in Law Conference

$65

Add to Cart
Previous Next