The document summarizes a master class on cyber compliance. It outlines challenges in ensuring security and compliance as no framework is 100% breach-free. It discusses European directives on critical infrastructure and outlines a three-line model for IT governance. Various strategies are proposed for areas like mobile device management, cloud services, auditing controls, and complying with regulations like GDPR and e-commerce directives.
18. Strength the scientific
basis to invest (or not!) on
data security controls for
contractual, privacy and
corporate criminal laws
Corporate defense
3
20. The paucity of legal opinion addressing
Monte Carlo techniques gives one pause at
suggesting that Monte Carlo simulation will
ever be challenged, much less successfully,
on judicial review. Judges will likely be
disinclined to delve into their intricacies, likely
characterized as technical and scientific and
subject to a longstanding judicial deference.”
Susan Poulter
Corporate defense
3
21. IT compliance register
4
GDPR, eCommerce directive
Computer crime for corporate
criminal responsibility
IT services, licenses, and
outsourcing contracts
Sectorial regulations for
essential services