Uber CSO ruling fallout: Individual liability extends to data breach response
Do compliance officers need to worry about individual liability regarding data breaches? Yes, said two former federal prosecutors.
Compliance officers have many concerns. They fret about whether their firm’s internal controls are working properly to prevent fraud and other misconduct. They wonder whether their fellow employees, despite regular training and reminders, understand those controls and apply them properly. And they hope they will have the genuine and unqualified support of their firm’s senior management should things go sideways.
The case of the Uber chief security officer found guilty by a jury earlier this month on two felonies for covering up a massive data breach and misleading federal regulators opens up another potential individual liability issue executives handling cyber incidents face, according to legal experts.