Governance, Regulation & Compliance


Education Level: Basic

4317 - Is a Security Certification a Get-Out-of-Jail-Free Card?

Monday, September 25
3:15 PM - 4:15 PM

Many companies are either actively pursuing third-party security certifications, such as ISO/IEC 27001 or HITRUST, or are in the planning stages of doing so. Many more rely on service providers who already have them. The question remains: In the event of a breach and resulting litigation and/or regulatory enforcement, just how useful are these certs for demonstrating that you met the legal standard of care? In this session, we’ll review just what security certs can do for you, whether they’re truly a Get-Out-of-Jail-Free card (or at least a Get-Out-of-Litigation-Free one) and address common questions.

Learning Objectives:

Scott M. Giordano

Director, Data Protection
Robert Half Legal

Scott M. Giordano, Esq., MBA, MS, CISSP, is director of data protection at Robert Half Legal Consulting. He is an attorney with more than 20 years of legal, technology and risk management consulting experience. An IAPP Fellow of Information Privacy and CISSP, Scott serves as Robert Half Legal’s subject matter expert on multinational data protection and its intersection with technology, export compliance, internal investigations, information governance and risk management.

Prior to joining Robert Half, Scott established the global privacy program for Esterline Technologies Corporation in Bellevue, Wash. Scott is a member of the bar in Washington state, California and the District of Columbia.


Send Email for Scott Giordano


4317 - Is a Security Certification a Get-Out-of-Jail-Free Card?

MP3 Audio Slides Video

Attendees who have favorited this

Please enter your access key

The asset you are trying to access is locked. Please enter your access key to unlock.

Send Email for Is a Security Certification a Get-Out-of-Jail-Free Card?