India, Aug. 23 -- Highly publicized data breaches and newly enacted statutory and regulatory requirements (e.g., GDPR, CCPA and breach notification statutes in all 50 states) are focusing attention on data and information security risks and incident response preparedness.

Likewise, most (if not all) business transactions are now conducted using digital technology and electronic communications. The recognition that all organizations are vulnerable to numerous information risks has underscored the critical need to identify and manage these risks as part of an information security program.

A clear understanding of information risks and how various information security obligations apply to an organization require ongoing conversations betwe...