On September 15, 2015, the Security and Exchange Commission’s Office of Compliance Inspections and Examinations (“OCIE”) issued a Risk Alert to provide additional information on the areas of focus for its second round of cybersecurity examinations. The OCIE’s initial cybersecurity examinations in 2014 were to identify cybersecurity risks and assess cybersecurity preparedness in the securities […]
Cybersecurity
Kim Peretti Appointed Co-Chair of Georgetown Cybersecurity Law Institute
Kim Peretti, co-chair of Alston & Bird’s Cybersecurity Preparedness & Response Team, has been invited to be a co-chair of Georgetown’s Cybersecurity Law Institute. The Cybersecurity Law Institute is in its third year and Ms. Peretti has been an advisory board member of the Institute for the past two years. In that time, she has already […]
Kim Peretti Speaking at NIST’s 2015 Cybersecurity Innovation Forum
Kim Peretti, co-chair of Alston & Bird’s Cybersecurity Preparedness & Response Team, will be a featured speaker at the 2015 Cybersecurity Innovation Forum (CIF) in Washington, DC, hosted by The National Institute of Standards and Technology (NIST). The CIF takes place September 9 – 11 and is a three-day event being planned with participation from the Department […]
Third Circuit Affirms FTC’s Authority to Regulate Data Security
On August 24, 2015, the Third Circuit affirmed U.S. District Court Judge Esther Salas’ April 2014 ruling in FTC v. Wyndham Worldwide Corp., et al. (“Wyndham”) that the FTC has the authority to regulate private companies’ cybersecurity practices under Section 5 of the FTC Act. (Prior blog posts on this case can be found here […]
Amended Washington Data Breach Law Requires Attorney General Notification, Imposes 45-Day Notice Time Limit
Earlier this year, Washington passed an amended version of its data breach notification law, which goes into effect Friday July 24, 2015. Washington’s updated breach notification statute will now, among other things, require compromised entities to notify the state Attorney General (AG) in some circumstances, and require notification to both consumers and, as applicable, the […]