Cybersecurity Audit and Assessment Considerations in the US and EU [Part 2]

Rachel V. Rose
Rachel V. Rose
Rachel V. Rose – Attorney at Law, PLLC

Ms. Rose has a unique background, having worked in many different facets of healthcare, securities, cybersecurity, as well as international law and business throughout her career.

Ryan Buckner
Ryan Buckner
Schellman’s Learning, Education & Academic Development

Having directly performed and completed over 1,000 cybersecurity audits, Ryan is one of the most experienced IT and operational auditors in the world.

On-Demand: November 21, 2024

1 hour CLE

Tuition: $95.00
Subscribe to Federal Bar Association CLE Pass...
Co-Sponsored by myLawCLE
Get this course, plus over 1,000+ of live webinars.
Learn More
Training 5 or more people?

Sign-up for a law firm subscription plan and each attorney in the firm receives free access to all CLE Programs

Program Summary

Part 2 of this 4 Part series. As threats to national security and critical infrastructures grow, so does coordination between countries in thwarting cybercriminals. Additionally, nations around the world, including the EU AI Act, continue implementing new laws and regulations to address privacy and security concerns.

This webinar delves into what to consider when assessing whether or not cybersecurity audits meet the relevant U.S. Executive Orders, the EU-US Privacy Shield, GDPR, The State and Local Government Cybersecurity Act of 2021, and other relevant laws in the context of board governance. Utilizing a three-step approach that includes (1) developing capabilities to leverage by governance, management and audit systems, (2) leveraging common capabilities for multiple purposes across the system, and (3) achieve compliance and risk objectives while addressing uncertainty and acting with integrity and candor.

Key topics to be discussed:

  • Appreciate different types of audits within different sectors
  • Learn from an auditor what passes muster in terms of an accurate audit
  • Understand how boards should be integrated into the conversation and what questions they should be asking

This course is co-sponsored with myLawCLE.

Closed-captioning available

Speakers

Rachel-V.-Rose_Principal-with-Rachel-V.-Rose-–-Attorney-at-Law,-P.L.L.C.Houston,-TX_FedBarRachel V. Rose | Rachel V. Rose – Attorney at Law, PLLC

Rachel V. Rose, JD, MBA is a Principal with Rachel V. Rose – Attorney
at Law, P.L.L.C. (Houston, TX)

Ms. Rose has a unique background, having worked in many different facets of healthcare, securities, cybersecurity, as well as international law and business throughout her career. For over a decade, her practice has focused on transactional, compliance, and litigation matters related to cybersecurity, health care, securities, and Dodd-Frank/False Claims Act whistleblower claims. She has conducted HIPAA Risk Analyses for a variety of domestic and international organizations and represented persons related to government enforcement inquiries and responses on cybersecurity and healthcare related matters. Ms. Rose worked on Capitol Hill when HIPAA passed in 1996 and worked at HHS in 2009 when the HITECH Act was being implemented. 

In addition to being extensively published, a sought-after presenter, and quoted expert, Ms. Rose holds an MBA with minors in healthcare and entrepreneurship from Vanderbilt University, a law degree from Stetson University College of Law, and an Executive Certification in Leadership and Negotiation from Harvard Law School. She is also the co-editor of the American Health Lawyers Association’s Enterprise Risk Management Handbook for Healthcare Entities (2nd Edition), as well as a co-author of the ABA’s books The ABCs of ACOs and What Are International HIPAA Considerations?, as well as various chapters in legal and medical books alike.

She has been named consecutively to the Texas Bar College, the National Women Trial Lawyers Association’s Top 25,  Houstonia Magazine’s Top Lawyers (healthcare), the National Trial Lawyers Association’s Top 100,  SuperLawyers (healthcare), as well as 1st Healthcare Compliance’s 2019 and 2022 Top Presenter. Ms. Rose is also an Affiliated Member with the Baylor College of Medicine’s Center for Medical Ethics and Health Policy, where she teaches bioethics. 

 

Ryan Buckner_FedBarRyan Buckner | Schellman’s Learning, Education & Academic Development

Having directly performed and completed over 1,000 cybersecurity audits, Ryan is one of the most experienced IT and operational auditors in the world.

Ryan’s career focus has been on the performance improvement of IT audit professionals through educational and experimental audit programs and methodologies. With a heavy focus on the AICPA attest code, and various control and risk management frameworks, Ryan has served hundreds of project teams and organizations in the achievement of their IT audit certifications and compliance objectives.

Ryan is a Principal and the Chief Knowledge Officer at Schellman Compliance. Ryan currently serves on Schellman’s attestation leadership team to lead the firm-wide training services. Prior to this role, Ryan led the firm-wide research and development for attestation methodology for more than 15 years. Ryan maintains the following professional certifications, licenses, and designations, among others:

  • Certified Public Accountant (over 20 years) licensed by nine (9) U.S. state boards of Accountancy
  • Certified Information Systems Security Professional (CISSP over 20 years)
  • Certified Information Systems Auditor (CISA)
  • ISO 27001 Lead Auditor
  • Certified Information Privacy Professional (CIPP)
  • Certified Knowledge Manager (CKM)

Ryan is also an AICPA-approved and nationally listed Peer Review Specialist for SOC examinations.

For 20+ years Ryan has evaluated the design, implementation, and operational effectiveness of risk mitigation strategies through both IT and operational / process controls. This included the identification of compliance, regulatory, and financial business objectives, and the assessment of risk management practices designed to address the risks to those objectives. Ryan has performed and managed all phases of the IT and cybersecurity audit process from risk assessment and management through the development and execution of audit programs for various industries. Ryan continues to be a frequent speaker and contributor to cybersecurity conferences and training forums.

Agenda

I. Understanding different types of standards and audits, as well as the three-step approach | 12:00pm – 12:15pm

II. How legal requirements intersect with audit requirements and content | 12:15pm – 12:30pm

III. What makes an audit effective, comprehensive, and legitimate? | 12:30pm – 12:45pm

IV. The role of third parties auditors and mitigating risk and how they may be named as a defendant | 12:45pm – 12:55pm

V. Conclusion | 12:55pm – 1:00pm

Credits

Alaska

Approved for CLE Credits
1 General

Our programs are CLE-eligible through Alaska’s recognition of multi-jurisdictional reciprocity.
Alabama

Pending CLE Approval
1 General

Arkansas

Approved for CLE Credits
1 General

Arizona

Approved for CLE Credits
1 General

California

Approved for CLE Credits
1 General

Colorado

Pending CLE Approval
1 General

Connecticut

Approved for CLE Credits
1 General

District of Columbia

No MCLE Required
1 CLE Hour

Delaware

Pending CLE Approval
1 General

Florida

Approved via Attorney Submission
1 General Hours

Receive CLE credit in Florida via attorney submission.
Georgia

Approved for CLE Credits
1 General

Hawaii

Approved for CLE Credits
1.2 General

Iowa

Pending CLE Approval
1 General

Idaho

Pending CLE Approval
1 General

Illinois

Approved for Self-Study Credits
1 General

Indiana

Approved for Self-Study Credits
1 General

Kansas

Pending CLE Approval
1 Substantive

Kentucky

Pending CLE Approval
1 General

Louisiana

Pending CLE Approval
1 General

Massachusetts

No MCLE Required
1 CLE Hour

Maryland

No MCLE Required
1 CLE Hour

Maine

Pending CLE Approval
1 General

Michigan

No MCLE Required
1 CLE Hour

Minnesota

Approved for Self-Study Credits
1 General

Missouri

Approved for CLE Credits
1.2 General

Mississippi

Pending CLE Approval
1 General

Montana

Pending CLE Approval
1 General

North Carolina

Pending CLE Approval
1 General

North Dakota

Approved for CLE Credits
1 General

Our programs are CLE-eligible through North Dakota’s recognition of multi-jurisdictional reciprocity. Section 1, Policy 1.14
Nebraska

Pending CLE Approval
1 General

myLawCLE reports attendance to Nebraska on each attorney’s behalf for all programs. Please do not self-report.
New Hampshire

Approved for CLE Credits
60 General Minutes

As of July 1, 2014, the NHMCLE Board no longer provides pre- or post-approval of courses. Attendees must self-determine whether a program is eligible for credit, and self-report their attendance online at www.nhbar.org, based on qualification provisions of Rule 53.
New Jersey

Approved for CLE Credits
1.2 General

Our programs are CLE-eligible through New Jersey’s recognition of multi-jurisdictional reciprocity, except for the courses required under BCLE Reg. 201:2
New Mexico

Approved for Self-Study Credits
1 General

Nevada

Approved for Self-Study Credits
1 General

New York

Approved for CLE Credits
1.2 General

Our programs are CLE-eligible through New York’s Approved Jurisdiction Group “B”.
Ohio

Pending CLE Approval
1 General

Oklahoma

Pending CLE Approval
1 General

Oregon

Pending CLE Approval
1 General

Pennsylvania

Approved for Self-Study Credits
1 General

Rhode Island

Pending CLE Approval
1 General

South Carolina

Pending CLE Approval
1 General

South Dakota

No MCLE Required
1 CLE Hour

Tennessee

Approved for Self-Study Credits
1 General

Texas

Approved for CLE Credits
1 General

Utah

Pending CLE Approval
1 General

Virginia

Not Eligible
1 General Hours

Vermont

Approved for CLE Credits
1 General

Washington

Approved via Attorney Submission
1 Law & Legal Hour

Receive CLE credit in Washington via Attorney Submission. myLawCLE will supply Washington state attorneys with instructions on how to gain credit.
Wisconsin

Approved for Self-Study Credits
1 General

West Virginia

Pending CLE Approval
1.2 General

Wyoming

Pending CLE Approval
1 General

Preview
More CLE Webinars
Upcoming CLE Webinars
Annual Mini-Medical School (2025 Edition)
Annual Mini-Medical School (2025 Edition) Thu, April 10, 2025
On-Demand
Live Replay
Commercial Evictions in Florida (Florida Specific)
Commercial Evictions in Florida (Florida Specific) Fri, April 11, 2025
Live Webcast
Motions That Persuade: Crafting Arguments That Win
Motions That Persuade: Crafting Arguments That Win Wed, April 16, 2025
Live Webcast
The Convergence of the EU AI Act and ISO Requirements
The Convergence of the EU AI Act and ISO Requirements
Rachel V. Rose – Attorney at Law, PLLC
Playing Defense at 30(b)(6) Depositions (2024 Edition)
Playing Defense at 30(b)(6) Depositions (2024 Edition) Fri, April 18, 2025
On-Demand
Live Replay
IRS Enforcement: Tax Liens & Tax Levies (2025 Edition)
IRS Enforcement: Tax Liens & Tax Levies (2025 Edition) Fri, April 18, 2025
On-Demand
Live Replay
Nonbankruptcy Restructuring Alternatives
Nonbankruptcy Restructuring Alternatives Fri, April 18, 2025
Live Webcast
Real Estate LLC Disputes
Real Estate LLC Disputes Wed, April 23, 2025
Live Webcast
Government Contracts 101 (2025 Edition)
Government Contracts 101 (2025 Edition) Thu, April 24, 2025
Live Webcast
Abating Tax Penalties (2025 Edition)
Abating Tax Penalties (2025 Edition) Thu, April 24, 2025
On-Demand
Live Replay