About this Event
This exclusive D.C. executive brief provides General Counsel, Chief Risk Officers, and cybersecurity leaders with the roadmap to mitigate catastrophic financial and legal penalties triggered by Europe’s latest extraterritorial regulations. We move past legacy compliance (GDPR) to address the immediate, conflicting demands of the EU's newest pillars.
1.The Imminent Regulatory Crisis: New EU Directive
NIS2 Directive: The Supply Chain Compliance Trap The Network and Information Security Directive 2 (NIS2) imposes mandatory, rapid 24-hour/72-hour incident reporting requirements on U.S. critical entities, including manufacturers and defense contractors operating in the EU , even if no data is exposed. Failure to comply risks severe fines of up to 2% of worldwide annual turnover.
The Conflict: These strict, rapid European reporting timelines conflict directly with existing U.S. statutory protections and internal policies designed to shield confidential national security or proprietary technology information. We detail how to implement a Unified Digital Operational Resilience (DOR) framework to reconcile these conflicting disclosure duties.
2.EU AI Act: Navigating the Policy Abyss The EU AI Act mandates robust governance, data quality, and continuous monitoring for "high-risk" systems used in finance, hiring, and law enforcement. This unified European approach clashes with the fragmented, patchwork nature of U.S. AI governance (federal initiatives alongside state laws like the NYC Bias Audit Law). We provide the methodology to classify your high-risk systems and conduct the essential governance audits needed to comply with the EU’s strict requirements for accountability and non-discrimination.
DORA: Financial Sector Vendor Liability The Digital Operational Resilience Act (DORA) mandates centralized ICT risk management across the European financial sector, extending strict operational resilience standards to their U.S.-based critical third-party service providers (CTPPs).
The Challenge: U.S. financial entities remain accountable for third-party failures. We reveal how to manage vendor oversight, track critical agreements, and remediate existing contracts to align with DORA’s resilience mandates, preventing regulators from potentially forcing the temporary suspension of non-compliant vendors.
3.Strategic Risk & Governance Integration
Learn to fuse all key EU digital compliance requirements—including the baseline requirements of GDPR and the tiered obligations of the Digital Services Act (DSA) —into a single, auditable enterprise risk strategy. This session focuses exclusively on immediate risk mitigation, liability reduction, and securing continued transatlantic market access
Event Venue & Nearby Stays
Hotel AKA Washington Circle, 1 Washington Circle Northwest, Washington, United States
EUR 0.00
