The SSCL's Annual Lecture will be held at 5.00pm to 7.00pm, with Richard R. Starnes' lecture on "The UK's Cybersecurity and Privacy Legislative Framework: Effectiveness, Enforcement, and Complexity Whitepaper"
SPEAKER: Richard R. Starnes is an award-winning cybersecurity executive with a proven track record of outcome-based success in both the public and private sectors. He has held CISO roles at Capgemini, Six Degrees Group, and Kentucky Health Cooperative, demonstrating expertise in developing and implementing information security strategies, policies, and procedures that reduced the frequency and severity of breaches.
He is committed to education and awareness, serving as a Non-Executive Director for the Cyber Resilience Centre for London, providing guidance and support to SMEs. He has also served as a guest lecturer at prestigious institutions and conferences such as Oxford, the London School of Economics, London Business School and Royal Holloway. His diverse industry experience spans finance, healthcare, government, law enforcement, and transportation.
He holds a Master of Science in Information Security from Royal Holloway, University of London.
ORGANISERS: Scottish Society for Computers and Law.
The event will be held in person at Burness Paull's Business Lounge located at 50 Lothian Road, Edinburgh, EH3 9WJ.
Event Info:
The UK's cybersecurity and privacy legal framework has raised awareness and implemented foundational controls, yet its fitness for purpose is questionable. Despite robust legislation like UK GDPR and NIS Regulations, persistent high breach rates and declining board-level oversight indicate limited impact on overall cyber resilience. A significant "enforcement paradox" exists, with inconsistent and weak application of existing laws, particularly under NIS, leading to a tendency for new legislation rather than strengthening current enforcement. The cumulative volume and complexity of regulations create a substantial burden, especially for SMEs, potentially diverting resources from adequate security and stifling innovation. A fundamental shift towards robust enforcement, simplification, and outcome-focused resilience is crucial.
STRUCTURE:
17.00 -17:30 Welcome Drinks
17:30 -18:15 Annual Lecture
18:15 -18:30 Q&A
18:30 -19:00 Networking with light refreshments
