Directors are From Mars; IT Executives are From Venus - How to Bridge the Communications Gap Around Good Cybersecurity

(97 Ratings)

Produced on: August 17, 2016

Course Format On Demand Audio

Taught by


Course Description

Time 60 minutes
Difficulty Intermediate

This course highlights and connects common issues encountered when advising companies and their boards of directors on cybersecurity.  Many of these issues deal with the failure to speak in a common language which all constituents in the company can understand and appreciate.  The course discusses better IT and Chief Information Security Officer (“the CISO”)- driven communications with a board; better director-driven communications with the CISO, and attempt to marry these two diverse groups together in the best interest of the company. Concluding with suggested tactics for success as well as guarantees for failure in cybersecurity communications.

Learning Objectives:

  1. Explore the common cybersecurity issues that companies face
  2. Examine ways that IT and Chief Information Security Officers can better communication with boards of directors about cybersecurity
  3. Learn tactics to promote internal communication about cybersecurity


Paul Ferrillo

Weil, Gotshal & Manges LLP

Paul Ferrillo is counsel in Weil’s Litigation Department, where he focuses on complex securities and business litigation, and internal investigations. He also is part of Weil’s Cybersecurity, Data Privacy & Information Management practice, where he focuses primarily on cybersecurity corporate governance issues, and assists clients with governance, disclosure, and regulatory matters relating to their cybersecurity postures and the regulatory requirements which govern them.

Mr. Ferrillo regularly counsels clients on cyber-governance best practices (using as a base the NIST cybersecurity framework), third-party vendor due diligence issues, cybersecurity regulatory compliance issues for private equity, hedge funds, and financial institutions that have been promulgated by the SEC, FINRA, the FTC, and the FDIC/OCC, the preparation and practicing of cybersecurity incident response plans, as well as evaluating and procuring cyber-liability insurance to protect against losses suffered by companies as a result of the theft of consumer or personally identifiable information, or as a result of the destruction of servers and corporate infrastructure.

Outside of his litigation and D&O insurance practice, Mr. Ferrillo is a prolific writer, speaker, and commentator on a wide range of subjects. He is a frequent contributor of articles concerning securities, corporate governance, and accounting fraud issues to the New York Law Journal, D&O Diary, Harvard Law School’s Forum on Corporate Governance and Financial Regulation, and other national publications and forums, and is a frequent speaker on securities law, corporate governance, and directors’ and officers’ liability insurance issues for the ALI-ABA, the New York State Bar Association, the American Conference Institute, NACD, and the Directors’ Roundtable. Mr. Ferrillo also is a co-editor of and contributor to The 10b-5 Guide, Weil’s annual review of securities fraud litigation in the United States.

Mr. Ferrillo received his B.S., and later, his J.D., from St. John’s University.


Richard R.

Important subject! Thank you

Virginia B.

Wow! This presentation was outstanding, clear, thorough, and effective. All of the cybersecurity issues I worry about as in-house counsel were discussed, things such as trusting the cloud for storage, spearphishing, ransomeware, preparedness -- all addressed with the appropriate amount of detail and clarity. Best of all, the presentation was PACKED WITH PRACTICAL ADVICE, which I cannot express well enough is incredibly appreciated. Thank you so much for having this webinar!

Load More


$ 59 Privacy & Cybersecurity In Stock


Get Unlimited Access to Lawline Courses

Unlimited CLE Subscription gives you access to take almost any course from our catalog and earn as much CLE credit as you need.