Programs for Organizations

Risk & Compliance: Cybersecurity at the Intersection of Law, Business, and Policy

Every day there are new reports of computer intrusions on a massive scale—from governments down to small businesses, it seems that no network is safe. The prizes for cyber-thieves, who may be tapping into networks from half a world away, or who may already be in your employ, range from valuable trade secrets and intellectual property, to personal data that can be monetized at scale or used for identity theft. The liability and regulatory landscapes are shifting, and the reputational risk is substantial. As a leader in your organization, these are risks you cannot ignore.

This course will teach the appropriate elements of an effective and proactive cybersecurity strategy; including how to understand where your vulnerabilities reside and how to integrate cyber risk into your company’s approach to enterprise risk management. While no system is immune from cyber-attacks, companies can do more to build security into systems design and management, create early warning systems to detect hacking attempts, effectively manage increasingly inconsistent obligations, contain the damage if hackers do get through, and mitigate and limit liability.

In the event a breach does occur, your company needs to respond effectively in the public arena, determine how to work with government, and manage potential litigation risk. The company’s obligations to shareholders must be understood in advance and its responses pre-prepared. Regulatory agencies are another constituency that will become involved, and their various roles and requirements, especially in regard to any investigations that will ensue in the event of a breach, must be integrated into your company’s response strategy.

Course Details

Sample Topics

Each program can be customized for content, format, and delivery. Below are a few indicative topics that could be included in the schedule:

  • Reputation Risk, Disclosure, and Liability
  • Understanding the Risks and Developing Strategies for Resiliency
  • Policy: Cooperation with the Government
  • Practice: The Evolving Cybersecurity Landscape

Featured Centers and Institutes

The NYU Law community boasts an extensive network of centers and institutes that provide insight and depth into the scholarship of this program.

Examples include:

Academic Director

Zachary Goldman

Zachary Goldman returned to NYU in 2012 after having served for several years in the US government. He first served as a policy advisor in the US Department of the Treasury’s Office of Terrorism and Financial Intelligence, where he was the subject matter expert on terrorist financing in the Arabian Peninsula, and worked on the development of Iran sanctions policy. He then served at the US Department of Defense as a Special Assistant to the Chairman of the Joint Chiefs of Staff. In the private sector, Zachary worked as an associate in the litigation department of Sullivan & Cromwell LLP in New York. He has published articles on national security strategy, financial sanctions, counterterrorism, and US foreign policy in outlets such as the New York Times, Foreign Affairs, Political Science Quarterly, Cold War History, the Atlantic, the Diplomat, the National Interest, and others. Zachary is a Term Member of the Council on Foreign Relations, and an Adjunct Senior Fellow at the Center for a New American Security. He received his JD from New York University School of Law, his Masters in International Relations from the London School of Economics, and his BA from Harvard University.

< Back to all programs