×
Why CIS Solutions Join CIS Resources
CIS WorkBench Sign-in CIS WorkBench Sign In CIS Hardened Images CIS Hardened Images Support CIS Support


Why CIS

Who We Are

CIS is an independent, nonprofit organization with a mission to create confidence in the connected world



About Us Leadership Principles Testimonials

Solutions

secure your organization
Secure Your Organization


secure specific platforms
Secure Specific Platforms


cis securesuite CIS SecureSuite® Learn More      Apply Now  
u s state local tribal and territorial governments
U.S. State, Local, Tribal & Territorial Governments


View All Products & Services  

Join CIS

Get Involved

Join CIS as a member, partner, or volunteer - or explore our career opportunities



CIS SecureSuite® Membership Multi-State ISAC (MS-ISAC®) Elections Infrastructure ISAC (EI-ISAC®) CIS CyberMarket® Vendors CIS Communities Careers

Resources

resources
Resources


learn
Learn


filter by topic
Filter by Topic


View All Resources  
CIS Logo Show Search Expand Menu

Incident Response Tabletop: Working with Law Enforcement and Insurers

Previously presented on Thursday, July 8th | 2:00 pm EDT

No matter how prepared, it’s an emotional and stressful experience managing a cyber data breach. While law enforcement can help recover stolen funds, provide decryption keys for ransomware attacks, and assist with insurance and regulator engagement, many firms are concerned that law enforcement will make the event public or even report the event to regulators. Join Mark Sangster, author of No Safe Harbor and eSentire Industry Security Strategist and U.S.S.S. agent TBC, as they run a simplified tabletop to demystify law enforcement misconceptions, and demonstrate how they collaborate to determine attribution, prosecute the threat actors, and support your recovery operations.

What Attendees will learn about:

  • Engaging law enforcement in IR planning and security awareness t
  • Accelerating recovery after an attack
  • Navigating financial recovery and insurance claims

View the recording below or download the slides and white paper.

Speaker:

Mark Sangster

Vice President and Industry Security Strategist

As a member of the LegalSec Council with the International Legal Technology Association (ILTA), Mark Sangster is a cybersecurity evangelist who has spent significant time researching and speaking to peripheral factors influencing the way that legal firms integrate cybersecurity into their day-to-day operations. In addition to his passion for cybersecurity, Mark's 20-year sales and marketing career was established with industry giants like Intel Corporation, BlackBerry, and Cisco Systems.

Mark's experience unites a strong technical aptitude and an intuitive understanding of regulatory agencies. During his time at BlackBerry, Mark worked on the first secure devices for government agencies. Since then, he has continued to build mutually beneficial relationships with regulatory agencies in key sectors.

Mark holds a Bachelor’s degree in Psychology from the University of Western Ontario and a Business Diploma from Humber College.