Acceleration Economy
  • Home
  • Cloud Wars
  • Analyst Content
    • By Category
      • AI/AI Index
      • Cloud/Cloud Wars
      • Cybersecurity
      • Data
    • By Interest
      • Leadership
      • Generative AI
      • Partners Ecosystem
      • Process Mining
      • Sustainability
    • By Industry
      • Financial Services
      • Healthcare
      • Manufacturing
      • Retail
    • By Type
      • Guidebooks
      • Summits
      • Roundtables
      • Video Moments
    • By Vendors
      • All Vendors
      • AI/Hyperautomation
      • Cloud
      • Cybersecurity
      • Data
  • Courses
    • Cloud Wars Top 10
    • Selling AI, Cloud, Data & Cybersecurity
    • The Demise of Traditional Go-To-Market Strategies
  • What we do
    • Advisory Services
    • Marketing Services
    • Event Services
  • Who we are
    • About Us
    • Practitioner Analysts
  • Subscribe
Twitter Instagram
  • Courses
  • Summit NA
  • Dynamics Communities
Twitter LinkedIn
Acceleration Economy
  • Home
  • Cloud Wars
  • Analyst Content
        • By Category
          • AI/AI Index
          • Cloud/Cloud Wars
          • CybersecurityThe practice of defending computers, servers, mobile devices, electronic systems, networks, and data from malicious attacks.
          • Data
        • By Interest
          • Leadership
          • Generative AI
          • Partners Ecosystem
          • Process Mining
          • Sustainability
        • By Industry
          • Financial Services
          • Healthcare
          • Manufacturing
          • Retail
        • By Type
          • Guidebooks
          • Summits
          • Roundtables
          • Video Moments
        • By Vendors
          • All Vendors
          • AI/Hyperautomation
          • Cloud
          • Cybersecurity
          • Data
  • Courses
    • Cloud Wars Top 10
    • Selling AI, Cloud, Data & Cybersecurity
    • The Demise of Traditional Go-To-Market Strategies
  • What we do
    • Advisory Services
    • Marketing Services
    • Event Services
  • Who we are
    • About Us
    • Practitioner Analysts
  • Subscribe
    • Login / Register
Acceleration Economy
    • Login / Register
Home » Why You Need to Consult a Lawyer After a Security Breach
Cybersecurity as a Business Enabler

Why You Need to Consult a Lawyer After a Security Breach

Frank DomizioBy Frank DomizioNovember 14, 2022Updated:April 13, 20234 Mins Read
Facebook Twitter LinkedIn Email
security breach lawyer
Share
Facebook Twitter LinkedIn Email
Acceleration Economy Cybersecurity

If you’ve suffered from a cybersecurity breach, you’ll need to undergo an investigation. During your investigation, you’ll need to focus on many legal considerations. Your security incident responders will already have some guidance, but, depending on the incident’s size or how heavily regulated your industry is, you’re probably going to want to talk to a lawyer.  That lawyer may be an in-house counsel, a third-party breach-and-privacy specialist, or your college buddy that went to law school.  No matter whom you choose to speak with, you’ll need to cover the following baseline of topics.

Victim Notification

After a security breach, there are PR considerations regarding whom to notify; how and when to notify them; and, possibly, whether or not to notify them at all. Legally, however, you may not have a choice: You might have to notify affected individuals in a certain manner and timeframe. 

HIPAA– (Health Insurance Portability and Accountability Act-)covered entities have a litany of eventualities to consider.  Did the breach cover more than 500 people?  Are you able to directly notify them via first-class mail?  How long do you have to leave a notification of the breach on your website?  These are just some examples of questions that may arise; there are many more.  I wouldn’t expect you to know all the considerations, which is why it is best to consult legal counsel about victim notification.

Government

Another topic to cover with an attorney is the involvement of law enforcement and other governmental agencies in your breach. Again, in heavily regulated environments, you may be compelled by law to report the incident to a law enforcement entity such as the FBI.  Among all the other issues you’re dealing with, you’re not going to want to deal with fines or sanctions because you didn’t make a simple phone call to law enforcement.  You may find that the FBI or Cybersecurity and Infrastructure Agency (CISA) can provide you with support and information that you would not otherwise have access to.

Media Notification

Do you dread the idea of airing your dirty laundry on the 6 o’clock news?  It can be much worse for the media to find out on its own than if you had been upfront.  Having a lawyer as a dispassionate third party can be helpful in considering what the best course of action may be.  Lawyers can also help with identifying the pitfalls and benefits of each direction and provide guidance on how to proceed.  Should you decide to involve the media, your lawyer will also be able to help you draft a statement that makes sense.  The lawyer can also be your spokesperson and take some of the burden off you during this busy time.

Legal Liabilities

During all these notifications that you may or may not be making, you’re going to want to make sure that someone has your back.  Most likely, you were the victim of a crime in this situation, but you may also be liable for damages if your team was not as diligent as it could have been.  You want to have someone who knows the law and has your interests in mind during this time.  Someone you can speak with frankly and someone that can give it to you straight.  Better to find out that you may be liable in the early stages. This way, you have time to properly plan for how to handle it rather than have it unceremoniously thrust upon you when you least expect it.  

Final Thoughts

These are just a few of the issues that having good legal counsel can help with during your breach.  Many, many issues arise during an incident investigation that will be easier to address with the help of an attorney.  Lastly, I will leave you with this idea. You do not want to be shopping for your privacy-and-breach specialist attorney amid your investigation.  I urge you to start a relationship with someone ahead of time so you have one less thing on your mind during this tumultuous period in the life of your business. 

CLICK HERE TO JOIN THE CONVERSATION ON LINKEDIN

Want more cybersecurity insights? Visit the Cybersecurity channel:

Acceleration Economy Cybersecurity

breach Cyber Crime Cybersecurity data data privacy featured Featured Post government healthcare media security
Share. Facebook Twitter LinkedIn Email
Analystuser

Frank Domizio

Deputy CISO
Executive Branch Agency

Areas of Expertise
  • Cybersecurity
  • LinkedIn

Frank Domizio is an Acceleration Economy Analyst focusing on Cybersecurity. As a retired Philadelphia Police Officer, Frank got his start in cybersecurity while he was detailed to the FBI as a digital forensic examiner. Since then, Frank has held many positions in and around the federal government specializing in Cyber Threat Intelligence and Incident Response. Now, as a Federal Civilian for an Executive Branch Agency, Frank is a student of the strategy and leadership that goes into making a successful cybersecurity program. He is also an adjunct professor of cybersecurity at the University of Maryland Global Campus. Frank holds a Bachelor of Science in Computing Security Technology from Drexel University and a Master of Science in Cyber and Information Security from Capitol College as well as many industry certifications. As a Federal Government Employee Frank’s views are his own, not representing that of the U.S. Government or any agency.

  Contact Frank Domizio ...

Related Posts

SAP’s Juergen Mueller on GenAI Revolution, Future of Cloud Innovation | Cloud Wars Live

September 25, 2023

Oracle Execs Vow No Price Hikes for GenAI; Premium Pricing ‘Silly’

September 25, 2023

On Location at Automation Anywhere Imagine 2023: Accelerating Industries Through Intelligent Automation

Sponsored ContentSeptember 25, 2023

GenAI Price War?: SFDC, NOW, SAP Boost Prices; Oracle Does Not

September 25, 2023
Add A Comment

Comments are closed.

Recent Posts
  • SAP’s Juergen Mueller on GenAI Revolution, Future of Cloud Innovation | Cloud Wars Live
  • Oracle Execs Vow No Price Hikes for GenAI; Premium Pricing ‘Silly’
  • On Location at Automation Anywhere Imagine 2023: Accelerating Industries Through Intelligent Automation
  • GenAI Price War?: SFDC, NOW, SAP Boost Prices; Oracle Does Not
  • How Generative AI Is Impacting Organizational Roles and Structures

  • 2X a week
  • Analyst Videos & Articles
  • Exclusive Digital Business Content
This field is for validation purposes and should be left unchanged.
Most Popular Guidebooks

The State of Process Mining 2023: Unlocking Efficiency and Driving Customer Satisfaction

July 31, 2023

How Workday Creates Agile Monetization Opportunities for CFOs

June 21, 2023

Why & How to Create a Zero-Trust Framework

June 12, 2023

The Ethical and Workforce Impacts of Generative AI

May 26, 2023

Advertisement
Acceleration Economy
Twitter LinkedIn
  • Home
  • About Us
  • Privacy Policy
  • Get In Touch
  • Advertising Opportunities
  • Do not sell my information
© 2023 Acceleration Economy.

Type above and press Enter to search. Press Esc to cancel.

  • Login
Forgot Password?
Lost your password? Please enter your username or email address. You will receive a link to create a new password via email.