A Look Ahead: Lisa Sotto's Privacy, Security Outlook in 2023Businesses Will Need to Figure Out How to Comply With an Array of New Privacy Rules
A multitude of state privacy laws taking effect in 2023 has forced organizations to revamp their compliance programs to incorporate the disparate requirements, says Lisa Sotto.
See Also: Healthcare Sector Threat Brief
Companies across every industry face a threat environment that's more active and malicious than ever before, and businesses are working to manage the fallout, says Sotto. In response, Sotto says incident response plans have become ubiquitous and companies have extended their cyber readiness tabletop exercises to include not only the information security team but also execs and members of the board (see: Proof of Concept: California's First Consumer Privacy Fine).
"It's been a real challenge to try to meld all the disparate privacy requirements into one comprehensive program that works throughout the organization, and also ensures legal compliance in every U.S. jurisdiction," says Sotto, who's partner and chair of the global privacy and cybersecurity practice at Hunton Andrews Kurth LLP.
In a video interview with Information Security Media Group, Sotto also discusses:
- How the global regulatory picture around privacy has shifted;
- How cyberattacks have changed amid the Russia-Ukraine war;
- What greater accountability around security means for leaders.
Named in The National Law Journal's "100 Most Influential Lawyers," Sotto serves on the Hunton Andrews Kurth executive committee. She was voted the world's leading privacy adviser by Computerworld magazine and has earned the highest honor from Chambers and Partners as a "Star" performer for privacy and data security. Recognized as a "leading lawyer" by The Legal 500 U.S., Sotto chairs the U.S. Department of Homeland Security's Data Privacy and Integrity Advisory Committee and is editor and lead author of "Privacy and Data Security Law Deskbook." She has represented the U.S. Chamber of Commerce in Indonesia and has advised the Serbian government on global data protection law. An ISMG contributor, Sotto is co-chair of the International Privacy Law Committee of the New York Bar Association and chair of the New York Privacy Officers' Forum.