Events , Global Compliance , Governance & Risk Management

Navigating Complexities of Risk Management and Compliance

Thompson Coburn Partner & Cyber Chair James Shreve on Changing Regulatory Landscape
James Shreve, partner and cyber chair, Thompson Coburn

With new legal and contractual requirements, the regulatory landscape in the cyber and privacy space is constantly changing - on both local and national fronts. As a result, compliance can become increasingly difficult, leaving organizations with a certain amount of risk.

See Also: Identity Security and the Quest for Zero Trust

James Shreve, partner and cyber chair at Thompson Coburn, emphasized the need to identify all cybersecurity requirements, map out potential conflicts and weigh the ramifications of noncompliance.

"It can be legal, it can be regulatory, but it can also increasingly be contractual. Contractual obligations can be more stringent than what applies to you by law," Shreve said. "A lot of times that comes from the bargaining power. You may be dealing with a large vendor that is imposing requirements on you that don't necessarily legally apply."

In this video interview with Information Security Media Group at RSA Conference 2023, Shreve also discusses:

  • Why boards must be involved in strategic decisions;
  • Current ransomware trends and the security preparedness of organizations;
  • SEC guidance on cybersecurity disclosures for publicly traded companies.

Shreve works closely with executive leadership, legal, IT and compliance teams to develop a comprehensive and practical plan for risk identification and mitigation. He has extensive knowledge of data security breaches, data safeguarding compliance and contractual negotiations regarding data security and information-sharing limitations.


About the Author

Anna Delaney

Anna Delaney

Director, ISMG Productions

An experienced broadcast journalist, Delaney conducts interviews with senior cybersecurity leaders around the world. Previously, she was editor-in-chief of the website for The European Information Security Summit, or TEISS. Earlier, she worked at Levant TV and Resonance FM and served as a researcher at the BBC and ITV in their documentary and factual TV departments.




Around the Network

Our website uses cookies. Cookies enable us to provide the best experience possible and help us understand how visitors use our website. By browsing careersinfosecurity.eu, you agree to our use of cookies.