Now that Uber’s former chief security officer has been convicted for his handling of a 2016 data breach, what are the potential implications for other security leaders?

Threat Intelligence & Incident Response Regulatory Compliance

1.4k views2 Upvotes2 Comments

Sort by:

Director of IT in Travel and Hospitality3 years ago

It's possible to overthink the consequences of this conviction. Just act with integrity and don't try to actively cover up/deny a breach.

Vice President of Information and Security in Manufacturing3 years ago

The implications are more real now. As a security leader, you have to have your security framework documentation, leadership risk acceptance documented and stored in a safe place to cover yourself. Security is not just the security leaders job even though they are face of security.

Content you might like

What strategies can organizations use to address the added compliance burden that comes with AI-enabled tools? How do you keep up with changes to both the vendor’s Terms of Service as well as various data privacy laws?

For European companies with DORA requirements – DORA expects to have in place exit strategies for critical IT providers, and internal IT providers. How are you handling exit strategies for internal IT providers (especially when they're set up as separate legal entities within your group)? More importantly, has anyone actually conducted the required exit strategy tests for internal providers, and if so, how did you approach it?

How confident are you in your processes for assessing/managing third-party risk?

Completely confident6%

Fairly confident64%

Slightly confident25%

Not at all confident3%

Not sure

View Results

Do you feel supported by your business partners for data governance investments?

Very supported40%

Moderately supported54%

Not supported at all5%