of the Oregon State Bar

Loading Events

« All Events

  • This event has passed.

Technology Law Section Virtual Lunch and Learn

May 19 @ 12:00 pm - 1:00 pm

A New Definition for Reasonable Cybersecurity

In this CLE, learn about “reasonable security” and how it directly applies to your practice.

In 2021, the Sedona Conference published their paper, Commentary on a Reasonable Security Test. The paper was written by a community of rivals – litigators, regulators, judges, and cybersecurity experts – to provide the public with guidance for determining whether security controls and programs are reasonable, as regulations require and as courts would seek to determine.

Chris Cronin is a co-author of the paper and will discuss how the paper came together, how it can be used to demonstrate compliance and due care, and its potential implications for public policy and cyber insurance.

Given the serious, constant, and rapidly changing risks associated with cybersecurity breaches and the unique situations each business faces, it is important that law firms utilize a test keyed to risk analysis to determine the steps necessary to reduce the risk of data loss or exposure. This allows firms to understand their specific risks and how best to manage and lessen those risks through things like improvements in network security, updated hardware and software, and ongoing employee training regarding cybersecurity.



Chris Cronin is a partner at HALOCK Security Labs and Chair of the DoCRA Council. He is the principal author of the DoCRA Standard and CIS RAM, Center for Internet Security’s Risk Assessment Method. Chris’ clients include Fortune 100 companies, large and mid-sized organizations, start-ups, litigators, and regulators. Since 2010 Chris has helped his clients manage their information security risks to an evidence-based, reasonable level. Chris’ work as an expert witness has helped his clients, regulators, and litigators evaluate the reasonableness of security controls and programs during regulatory oversight or post-breach legal action. Chris is frequent speaker and cybersecurity writer. He collaborates with peers in industry collaboratives and think tanks, including Sedona Conference, to help bring equity and due care to cybersecurity and risk management.

Rachel Edwards received her BA from the University of Washington in Seattle and her JD from Willamette University College of Law. She is a member of the Oregon State Bar, Oregon Women Lawyers, Multnomah Bar Association, Washington County Bar Association, and has been an elected board member of the Washington County Bar Association and a founding subcommittee member of the New Lawyers Division of the Washington County Bar Association. She has served as a Classroom Law Project Mock Trial Volunteer Judge, an Oregon Department of Human Services Adoption Contract Vendor Attorney, and a volunteer for the Convocation on Equality and the St. Andrew Legal Clinic.

Prior to joining the Professional Liability Fund in 2016, Ms. Edwards was in private practice for four years. Her areas of practice included Social Security disability, family law, adoption, and estate planning.  In her role as a Practice Management Attorney for the PLF, Ms. Edwards provides practice management assistance to Oregon attorneys to reduce their risk of malpractice claims and enhance their enjoyment of practicing law. Her assistance is free and confidential.


When: Thursday, May 19, 2022, 12:00-1:00pm

Where: Zoom



$15 for Technology Law members;

$18 for other bar members and non-lawyers;

$15 for students (law students: enter code STLC22LS at checkout to receive discount).


MCLE Credit: The Tech Law Section will apply for 1 General CLE credit.

Click here to register. Participants must register by noon, Wednesday, May 18, 2022, to access the event. The meeting link will be emailed to registrants on the afternoon of May 18.

For questions regarding the meeting link, please contact Eva Novick, [email protected].


May 19
12:00 pm - 1:00 pm


Zoom Meeting
United States + Google Map

Powered by WordPress & Theme by Anders Norén