Now that Uber’s former chief security officer has been convicted for his handling of a 2016 data breach, what are the potential implications for other security leaders?

Threat Intelligence & Incident Response Regulatory Compliance

1.4k views2 Upvotes2 Comments

Sort by:

Director of IT in Travel and Hospitality3 years ago

It's possible to overthink the consequences of this conviction. Just act with integrity and don't try to actively cover up/deny a breach.

Vice President of Information and Security in Manufacturing3 years ago

The implications are more real now. As a security leader, you have to have your security framework documentation, leadership risk acceptance documented and stored in a safe place to cover yourself. Security is not just the security leaders job even though they are face of security.

Content you might like

In the past 6 months, have you seen an uptick in targeted cyberattacks on telehealth devices and networks?

No Increase17%

1-5% increase46%

6-25% increase24%

26-50% increase7%

51-75% increase1%

76%+1%

Other2%

View Results

With Gartner highlighting the urgency of post-quantum cryptography (PQC), I would like to know if there are other members of the group already involved in the discussion or in the planning to face the threat of attacks like 'harvest-now, decrypt-later'?

How are you diversifying threat intelligence sources? Have you been able to reduce reliance on CISA for TI?

Anyone working in regulated financial institutions using ecs https://bsr.stlouisfed.org/ecs/ ? If so, who have you set up as your point(s) of contact? Security? Regulatory Affairs? Risk Management?

Organizations should invest in a data governance framework preemptively.

Strongly agree18%

Agree66%

Neutral11%

Disagree3%

Strongly disagree

View Results