Aaron Kornblum, head of legal at Oleria, discusses why security functions are increasingly important for legal departments. Aaron covers the evolution of security threats (from hacking to phishing to smishing), and describes the importance of identity management. Listen for insights on integrating security practices, fostering accountability, and leveraging legal frameworks to enhance both security and customer trust.

---------

CINDY:  The best defense is a great offense in terms of, do we have our processes in place? Do we have our playbooks? Have we tabletopped? and this is assuming you have all your fundamentals, like all your tools, technology in place to really establish the security for the company.

AARON:  It's that phishing attack to get Cindy's username and password. It's that smish, it's that fake text message to Jessica that is purportedly from her CEO asking for the password to send a wire transfer to the bank account. It's more and more prevalent to get in the door and then do all kinds of bad things once they're inside that juicy interior environment. So understanding what normal behavior looks like within your own environment, within your own ecosystem, is more important than ever. That hygiene, if you will, of accounts and account credentials, passwords, two factor auth, or multi factor authentication, to ensure that the person trying to log in really is the person trying who's trying to log or no one are supposed to be logging in.

AARON:  If you think about some of the areas that we just touched on, so information security, so that building the great wall to keep out folks. But also inside the company, provisioning access and then reporting or doing compliance work. These might be separate teams within a single organization. Maybe it's a small company, and it's one person. But regardless, having that robust communication between the different parts of the company responsible, say for, maybe it's the CIO, and the CTO, and the Head of Legal or GC, and then the Chief Information Security Officer, each one of these professionals has a role in helping to build this portfolio of defensive measures.

AARON:  What do you have in place to protect your identity security? How often do you conduct training for your employees? It's much more difficult to secure, much more expensive to, to take down.

---------

00:37 - Meet our co-host, Cindy

01:58 - Meet our guest, Aaron
05:34 - Security incidents that keep us up at night

07:27 - Being prepared

15:43 - Ensuring cohesion

19:21 - Risk mitigation

25:43 - What’s in the news

34:14 - Keep or redline?

38:16 - Final take aways

---------

Find Aaron Kornblum on LinkedIn

Find Cindy Rosser on LinkedIn

Find Jessica Nguyen on LinkedIn
More about Docusign