June 25, 2021
CHROs and their cybersecurity counterparts came together for a discussion on the role of HR in preventing, preparing for, and responding to ransomware attacks, which have significantly increased in frequency over the last year, necessitating company-wide crisis responses, especially communications.
Involvement by CHROs is becoming more common, said HR Policy Privacy Counsel Harriet Pearson of Hogan Lovells, who set the stage for call participants. “Attacks often immobilize part of a company’s ability to operate, which is a trigger for more of the company to get involved. Further, HR data is frequently among the most sensitive held by a company and is sometimes targeted. The HR function is responsible for ensuring a company has the right talent to respond and for developing a culture that determines the strength of preparation and response.”
Pitney Bowes CHRO Johnna Torsone and Chief Information Risk Officer Ray Umerley relayed lessons learned from their experiences with ransomware attacks.
OhioHealth CHRO Shereen Solaiman and CIO Jim Weeast gave the perspective of a health care provider, outlining their efforts in preventing an attack.
“The increased frequency and risk associated with such attacks may represent a turning point for companies as they consider how best to respond to them,” said HR Policy CEO Tim Bartl, who moderated the call. “This is far broader than an IT issue, and companies are recognizing that.”
Click here for the call presentation.