- Topics
- Regions
- Events
- Webcasts
- Resources
- CW Exclusives
- Membership
“For tracking litigation, enforcement, and regulatory developments, Compliance Week
should be your prime source.”- Chief Compliance Officer and VP of Legal Affairs, Arrow Electronics
DOJ official addresses liability concerns stemming from Uber CSO case
By 
Aaron Nicodemus2022-12-12T20:05:00
A Department of Justice (DOJ) official called the conviction of a former Uber Technologies chief security officer (CSO) on obstruction charges an “outlier” that should not discourage compliance officers from self-reporting violations.
In remarks made Dec. 6 at an American Bankers Association conference, Principal Associate Deputy Attorney General Marshall Miller said the agency’s pursuit of obstruction and concealment charges against former Uber CSO Joseph Sullivan “stemmed from an extreme set of actions that represent an acute outlier from regular compliance practice.”
Some in the compliance and cybersecurity community expressed concern following the October verdict that it could set a new standard for individual liability regarding company data breaches. Miller acknowledged this during his remarks.
THIS IS MEMBERS-ONLY CONTENT
You are not logged in and do not have access to members-only content.
If you are already a registered user or a member, SIGN IN now.
Related articles
-
News BriefEx-Uber security chief avoids prison in obstruction case
The former chief security officer of Uber Technologies was sentenced to probation by a federal court judge as punishment for his involvement in covering up a 2016 data breach that affected 57 million users.
-
PremiumStudy: Healthcare overtakes finance as most breached industry in 2022
Healthcare organizations were under attack more than ever by cybercriminals in 2022, overtaking finance as the most breached industry, according to the latest analysis from Kroll.
-
ArticleUber CSO ruling fallout: Individual liability extends to data breach response
The case of the Uber chief security officer found guilty by a jury on two felonies for covering up a data breach and misleading federal regulators opens up another potential individual liability issue executives handling cyber incidents face, according to legal experts.
More from Regulatory Enforcement
-
News BriefSEC fines LPL Financial $18M for failed due diligence on new, high-risk accounts
Broker-dealer LPL Financial will pay $18 million to settle charges by the Securities and Exchange Commission that its anti-money laundering program did not properly vet customers and failed to close or restrict thousands of high-risk accounts.
-
News BriefAmex to pay $230M in penalties to resolve charges it deceived customers, banking partner
American Express will pay approximately $230 million in fines and penalties to settle allegations that it deceptively marketed credit card and wire transfer products, and also misrepresented the tax benefits of two payroll wire transfer products.
-
News BriefSEC fines Wells Fargo $35M, Merrill Lynch $25M over improper cash sweeps
Wells Fargo and Merrill Lynch will pay $35 million and $25 million, respectively, to settle allegations by the Securities and Exchange Commission that their handling of investment accounts’ cash sweep programs violated federal law.