Current privacy regulations and frameworks focus on responding to a data privacy loss event and are inadequate in addressing privacy via preventative measures. By addressing privacy risks proactively with a defensive mindset, organizations can avoid judicial and punitive processes, high cyber risk insurance rates, and manage their overall operational risk. One highly effective approach to managing cyber risk proactively is to create a robust security testing program.

Join us onThursday, January 26, 2023in-person or live streaming— at the nextMidwest Cyber Security Alliance(MCSA) meeting to learn more. Sam Horvath and Norman Kromberg from offensive security provider NetSpi will examine:

  • How to take advantage of security controls for managing both privacy and security related risk
  • Creating and scaling an offensive security program that accounts for privacy-focused risks and related compliance
  • How to work with offensive security vendors in creating customized testing programs that address both privacy and security

Two Ways to Join

In addition to welcoming local attendees to the scenic 40th floor of our Milwaukee office, we are pleased to continue offering a virtual option for those not able to attend in person. We will be monitoring CDC, local, and state guidelines, so the program format may be subject to change.

To register,click hereand select in-person or virtual attendance. There is no fee to attend this event, but advance registration is required.


Applications for accreditation will be submitted to all applicable MCLE jurisdictions for up to 1.50 credit hours. Foley & Lardner LLP is an approved MCLE provider in California, Colorado, Illinois, New York, and Texas. For purposes of New York CLE credit, this program is appropriate experienced attorneys only.Certificates of attendance will be distributed to eligible participants approximately eight weeks after the program via email.For questions regarding CLE, please

In-person attendee instructions:

To be eligible for CLE credit, fully complete and sign the CLE Attendance Form provided on-site and return it to the registration table before you leave the program. Be sure to indicate your sign-in and sign-out times on this form as well, regardless of whether you arrive late, leave early, or attend the full duration of the program.

Important Information for New York / New Jersey Attorneys:Per recent New York State Bar requirements, when you return your completed CLE Attendance Form to the registration table upon leaving the program, you must also have Foley staff review and initial your form to verify your attendance.

Remote attendee instructions:
To be eligible for CLE credit, you will need to be logged into the Microsoft Teams meeting for the full duration of the live event; credit may not be obtained by viewing and/or listening to a program recording after the event. Your first and last names must also be entered upon joining the meeting and displayed throughout the program. Additionally, you will need to complete and return the Attorney Affirmation Form that will be made available.


This program may be eligible for continuing privacy education (CPE) credit toward CISA, CISM, CGEIT, and/or CRISC certifications and maintenance. Please visit theISACAwebsiteto review the specific CPE requirements for your certification and verify whether the topic(s) addressed in this program align with one or more of your certification's job practice areas:CISA,CISM,CGEIT, andCRISC. If determined to be eligible, an ISACA Verification of Attendance form will be made available for self-reporting purposes.