Cyber Risk and Cyber Insurance: The 5 Things Every In-House Counsel Needs to Know

(108 Ratings)

Produced on: August 10, 2017

Course Format On Demand Audio

Taught by


Course Description

Time 60 minutes
Difficulty Intermediate

Since last summer, cybersecurity has sprung to the front and center of not only the news, but the boardroom as well. However, understanding cybersecurity defensive solutions and the cybersecurity risk has been described as “an enigma shrouded by a mystery.” With the recent settlement of a data breach litigation for $115 million, there can be no question that cybersecurity is a topic that can hurt even the largest company, especially if they do not purchase cyber insurance. This presentation, presented by Paul Ferrillo, will unwrap the mystery of cybersecurity in a plain-English fashion, and will discuss when and how to purchase cybersecurity insurance.

Learning Objectives:

  1. Understand why cyber risk matters and how it translates into insurance
  2. Review stand-alone cyber insurance, including what it covers and what it doesn’t
  3. Identify recent trends in the cyber world
  4. Discuss the underwriting process for cyber insurance
  5. Gain five key takeaways related to the purchase of cyber insurance


Paul Ferrillo

Weil, Gotshal & Manges LLP

Paul Ferrillo is counsel in Weil’s Litigation Department, where he focuses on complex securities and business litigation, and internal investigations. He also is part of Weil’s Cybersecurity, Data Privacy & Information Management practice, where he focuses primarily on cybersecurity corporate governance issues, and assists clients with governance, disclosure, and regulatory matters relating to their cybersecurity postures and the regulatory requirements which govern them.

Mr. Ferrillo regularly counsels clients on cyber-governance best practices (using as a base the NIST cybersecurity framework), third-party vendor due diligence issues, cybersecurity regulatory compliance issues for private equity, hedge funds, and financial institutions that have been promulgated by the SEC, FINRA, the FTC, and the FDIC/OCC, the preparation and practicing of cybersecurity incident response plans, as well as evaluating and procuring cyber-liability insurance to protect against losses suffered by companies as a result of the theft of consumer or personally identifiable information, or as a result of the destruction of servers and corporate infrastructure.

Outside of his litigation and D&O insurance practice, Mr. Ferrillo is a prolific writer, speaker, and commentator on a wide range of subjects. He is a frequent contributor of articles concerning securities, corporate governance, and accounting fraud issues to the New York Law Journal, D&O Diary, Harvard Law School’s Forum on Corporate Governance and Financial Regulation, and other national publications and forums, and is a frequent speaker on securities law, corporate governance, and directors’ and officers’ liability insurance issues for the ALI-ABA, the New York State Bar Association, the American Conference Institute, NACD, and the Directors’ Roundtable. Mr. Ferrillo also is a co-editor of and contributor to The 10b-5 Guide, Weil’s annual review of securities fraud litigation in the United States.

Mr. Ferrillo received his B.S., and later, his J.D., from St. John’s University.


Cliff T.

Excellent. Very timely too. True, practical, deep subject experience clearly displayed by the presenter. Thanks.

Randi M.

Very good!

Load More


$ 59 Privacy & Cybersecurity In Stock


Get Unlimited Access to Lawline Courses

Unlimited CLE Subscription gives you access to take almost any course from our catalog and earn as much CLE credit as you need.