Skip to main content
Constitution and code of ethics
Annual general meetings
Financial Reports (Members Only)
Australian Cyber Security Magazine
Corporate partner policy
Want to Speak at an AISA Event?
National Conference 2018
Perth Conference 2017
Perth Conference 2016
National Conference 2017
National Conference 2016
National Conference 2015
National Conference 2014
National Conference 2013
National Conference 2012
National Conference 2011
National Conference 2010
National Conference 2009
News and media
AISA Media releases
AISA in the news
Brisbane Branch news
National Newsletters (Members only)
Industry New and Media
Ask an expert
Email legal notice
Share this page
Share on Facebook
Share on Twitter
Share on LinkedIn
Brisbane Branch Meeting: April 18
Understanding Incident Response in the age of Mandatory Notification, with Ben Di Marco
Understanding Incident Response in the age of Mandatory Notification
Australia's Privacy Amendment (Notifiable Data Breaches) Act 2017 (Cth) (the Data Notification Law) came into force on 22 February 2018 and imposes obligations on organisations to notify individuals whose records are compromised by an "eligible" security breach and
to report notifiable breaches to the Office of the Australian Information Commissioner.
The Data Notification Law will challenge how organisations manage security incidents, and increase compliance and regulatory risks. The purpose of this presentation is to provide risk managers and security professionals with an understanding of the practical implications of the law, an understanding of the real costs that are likely to be incurred where a security event arises, and to provide guidance on how best to manage the law and its likely consequences.
The presentation will address the following topics:
(a) Understanding how data security incident response should be conducted in light of Australia's Data Notification Law;
(b) Examining the true costs of data breaches, and key strategies to reduce the costs and the compliance burden;
(c) Managing the process for investigating and providing notification;
(d) Learning from mandatory notification case studies drawn from both local and international examples; and
(e) Guidelines and key strategies to more effectively manage risk.
Ben Di Marco
Ben specialises in data privacy, technology law, dispute resolution and insurance. He has over 10 years’ experience acting for companies in litigated disputes and has a strong focus on cyber insurance, IT liability and professional indemnity claims.
In 2016 Ben was seconded to Clyde & Co’s San Francisco data privacy and cyber insurance team. He continues to work with both Clyde & Co’s San Francisco and Australian teams on numerous local and global data breach and cyber insurance matters.
Ben regularly publishes and presents on emerging data security and technology issues and in the past year has delivered presentations and papers to the AusCERT National Information Security Conference, the OAIC Asia Pacific Privacy Conference, the Underwriting Agencies Council of Australia, the Australian Institute of Company Directors, and to the Association of Corporate Counsel.
Light lunch provided
Please sign in to register for this event
Many thanks to our sponsors
AISA also thanks
for sponsoring the venue for this meeting
4/18/2018 12:00 PM - 1:00 PM
BDO Level 10/ 12 Creek Street Brisbane, QLD 4000 AUSTRALIA
Keep me signed in
I don't know my
Create a new account