06-10, 17:20–18:05 (Europe/Berlin), Blue Saloon
To build a rock-solid Cyber Security program, there is no way around data protection and privacy these days. Cyber attackers often target assets, which store personal data. Such kind of unlawful disclosure trigger multiple notification requirements - depending on applicable data protection laws. Cyber Security as partner in crime supports the technical stuff like root cause analysis, containment, and mitigation measures. So keep personal data safe, respect data protection and privacy: preach it - don´t breach it!
We would like to share how to build a proper incident response process including state of the art cyber security plus keeping data protection and privacy obligations close at heart. Working both at a big European Software company and incident response being our day-to-day job, we would be very happy to share our experience.
Both fields of expertise have huge potential for complementing each other and quite frankly: it is a lot of fun to work collaboratively in this ever-changing, super dynamic and international environment.
Our presentation won´t include any triggering effects or topics, like e.g. violence, war, death etc.
Chris is working in Computer Emergency Response Teams and recently started to learn how to speak with data privacy lawyers.
I am working quite passionately as a Lead Senior Legal Counsel at Europe's biggest software company in the data protection and privacy team. One of my main area of expertise is incident response and working closely together with my security colleagues.