Cyber attacks continue to grow against the wide range of industries that rely on connected systems to manufacture products, monitor industrial processes, operate critical infrastructure and perform countless other sensitive processes. These attacks against industrial systems—generally referred to as “Operational Technology” (OT)—threaten to stop production, impair the integrity of safety-critical systems or even cause physical damage or personal injury. Numerous industries also face significant corresponding legal risk, including manufacturing, oil and gas, electric power, chemicals, water and many more.
While the challenges are substantial, companies can take practical steps to help mitigate these risks. Effective collaboration between legal, security and business teams can significantly reduce risks to businesses in the wake of a cyber incident involving operational technology. Likewise, close collaboration between legal, security and business stakeholders before incidents occur—including through internal assessments, vulnerability management and tabletop exercises—can reduce future legal risk.
Mayer Brown and Dragos cybersecurity teams discussed practical lessons from the field in how legal teams can work with security and other business stakeholders to mitigate cyber risk to operational technology. The presenters covered important technical, legal and practical issues to consider, including:
- Managing legal privilege in the context of OT cybersecurity
- Best practices for engagement between OT security teams and other stakeholders
- Effective preparation for OT cyber incidents
- Opportunities for ongoing collaboration between OT security and legal teams
Dragos Professional Services and R&D
Dragos Global Incident Response Services
CLE is not available when viewing a recording of this program. In order to receive credit you must have attended the live webinar program.