ISTARI Spotlight – Can CISOs go to jail? Legal risks and personal burdens
“Justice will not be served until those who are unaffected are as outraged as those who are.”?
— Benjamin Franklin
?
In the much-anticipated conclusion to Joe Sullivan’s trial - the first case in history where criminal charges were brought against an executive pertaining to a data breach - the ex-Uber security chief has narrowly avoided a prison sentence. Despite prosecutors recommending at least two years of jail time, Sullivan won’t spend any time in prison for his role in covering up Uber’s data breach from the Federal Trade Commission in 2016.?
In sentencing, the judge attributed his decision to the fact that the case was unprecedented and unusual in nature - but made it clear that others who follow in Sullivan’s steps could expect to face jail time. The pressure on CISOs seems to be mounting.?
So in this month’s Spotlight, we’re looking at what the outcome of this historic trial means for CISOs. What legal risks do CISOs face? How can they limit their personal liability? And does the pressure and burden of personal liability on CISOs lead to burnout?
The Uber trial highlighted that security chiefs are being asked to walk a tightrope. So what should they take from the Joe Sullivan’s sentence???
领英推荐
How can CISOs protect themselves from future lawsuits? Robust documentation, clear communication, and thorough diligence all play a pivotal role.
Almost two thirds of CISOs (61%) agree that they face excessive expectations. CISOs are stressed out and concerned about their personal liability. A new survey highlights that these pressures often lead to burnout.
The Compass Summit 2023
Less than one month until our CISO community convenes at the 2023 Summit. If you can't join in person, register to attend the opening keynote session virtually.
Subscribe to Spotlight: https://istari-global.com/insights/spotlight/subscribe/