The world of cybersecurity regulation changed forever on March 1, 2017, when the new sweeping cybersecurity regulations from the New York State Department of Financial Services took effect. The regulations affect thousands of regulated financial institutions directly as well as thousands more Third Party Service Providers that support those financial institutions, world-wide. The regulations add to the complexity that financial institutions already face in developing and implementing their comprehensive information security programs. They also bring with them pitfalls and uncertainty, as DFS and the industry move forward under this new regulatory scheme together.
In response to this sea-change, Fasoo—a leader in data security—has sponsored a study by the Ponemon Institute to gauge industry readiness and reaction to the new regulations. Please join us for an exclusive event where Dr. Larry Ponemon from the Ponemon Institute, Fasoo and Harter Secrest & Emery, LLP will present and discuss the results of the study, as well as implications for compliance going forward. In addition, GreyCastle Security will provide practical insight on how best to build a DFS-compliant cybersecurity program and Lawley Insurance will speak to the key role insurance plays in the DFS-compliance analysis. As a host, Brite will be on hand to discuss recommended processes and industry leading solutions to meet the requirements.
Tuesday, May 16, 2017
7:30 - 8:00 am: Registration and Continental Breakfast
8:00 - 10:00 am: Seminar and Panel Discussion
Harter Secrest & Emery LLP, 13th Floor
1600 Bausch & Lomb Place
Rochester, New York 14604
Parking available in the adjacent Court Street Garage. Parking will be validated.
- Overview of 23 N.Y.C.R.R. Part 500 and Key Legal Challenges: F. Paul Greene (Harter Secrest & Emery LLP)
- Ponemon Survey Result “Countdown to Compliance”: Dr. Larry Ponemon (Ponemon Institute)
- Panel Discussion - Pathway to Compliance: Dr. Ponemon, F. Paul Greene, Reg Harnish, (GreyCastle Security), Reggie Dejean (Lawley Insurance), Ron Arden (Fasoo)
For purposes of New York State Mandatory CLE requirements, this session will be eligible for at least 1.5 credit hours in the Professional Practice category and is designated as transitional and non-transitional.
Please register by May 9th. Space is limited.
About the Presenters:
F. Paul Greene is chair of the Privacy and Data Security Practice Group at Harter Secrest & Emery. For nearly a decade, Paul has represented companies of all sizes, from start-ups to a Fortune 100 corporation, in numerous industries, on their cyber risk issues. He counsels clients concerning all aspects of pre-breach preparation and risk management, including security and vulnerability assessments, policy and procedure review, breach response planning and drills, as well as board and management education on reducing cyber risk. After the breach, Paul serves as a “breach coach,” directing all aspects of breach response, remediation, and reporting.
Paul is a frequent speaker as well as an author of noteworthy articles on cybersecurity appearing in the New York Law Journal, Rochester Business Journal, Buffalo Business First, and more. He is also a recognized thought leader on the subject, frequently collaborating with academics as well as researchers and journalists in the field.
Dr. Larry Ponemon is the Chairman and Founder of the Ponemon Institute, a research “think tank” dedicated to advancing privacy, data protection and information security practices. Dr. Ponemon is an adjunct professor for ethics and privacy at Carnegie Mellon University’s CIO Institute. Dr. Ponemon was a senior partner of PricewaterhouseCoopers, where he founded the firm’s global compliance risk-management group. Prior to joining PricewaterhouseCoopers as a partner, Dr. Ponemon served as the National Director of Business Ethics Services for KPMG Peat Marwick and was appointed Executive Director of the KPMG Business Ethics Institute.
Reg Harnish is an entrepreneur, speaker, author and the CEO for GreyCastle Security, a leading cybersecurity consulting firm headquartered in Troy, NY. Reg has been practicing security for nearly two decades. Reg brings a thought-provoking perspective to the industry and strives to promote awareness, security "thinking" and practical application of security fundamentals.
Reg attended RPI in Troy, NY, and is a certified CISSP, CISM, CISA and ITIL. Reg is a fellow of the National Cybersecurity Institute, serves on numerous security association boards and is currently an advisor to several educational institutions focusing on cybersecurity. Reg is a nationally-recognized speaker and has presented at countless industry and security events, including BSides, ISSA, ISC2, ISACA and InfraGard. In 2017, Reg was named cybersecurity consultant of the year for all of North America by the Cybersecurity Excellence Awards. Reg is a contributor to numerous security publications and has co-authored several books on cybersecurity awareness.
Reggie Dejean joined Lawley in December 2001. Reggie is responsible for Lawley’s specialty insurance department, including errors & omissions insurance, professional liability insurance, medical malpractice insurance, directors & officers insurance (D&O insurance), employment practices liability, fiduciary liability, cyber/network security (including privacy) liability and pollution coverages.
Reggie has more than 26 years of experience in the insurance industry, both on the Insurance Company and Agency/Broker side. He previously worked for Travelers, Chubb, and Aetna Insurance as Marketing and Underwriting Manager for their Commercial Insurance divisions.
Ron Arden is Executive Vice President & COO of Fasoo, Inc. He has over 30 years of strategic planning, marketing, sales, business development, consulting and technical experience in the information technology and security industries. Prior to working for Fasoo, he was Vice President of Strategy and Marketing at eDocument Sciences, LLC where he drove document security, cloud and collaboration strategies and solutions. Ron has held executive, management and technical positions at numerous organizations, including IKON Office Solutions, Digital Equipment Corporation and Wang Laboratories.
He holds a B.S. in Electrical Engineering from the University of New Hampshire, has spoken at numerous industry events and is a regular contributor to the Fasoo blog.