This case involves a company that runs a cryptocurrency exchange. A large number of the site’s users fell victim to a phishing scheme and alleged that the site administrators failed to implement proper security protocols that would have prevented such a scheme. The company in question claimed to use 2FA (two-factor authentication), amongst other cutting-edge security measures, to prevent such events from occurring. An expert in cyber security was sought to confirm that there was nothing more the exchange company could have done to prevent the phishing scheme.
Question(s) For Expert Witness
1. Please describe your background in cybersecurity and why you are qualified to review this case.
Expert Witness Response E-279607
I am a certified cybersecurity expert and attorney with 25+ years of experience in the global digital technology industry. I spent the early years of my career as a software developer before working as a management consultant. My experience and specialties include risk management, information privacy, IT governance, IT auditing, IT assurance, online fraud, and IT contractual dispute management. I also earned a diploma in e-commerce, and I am certified as an information security manager, an information systems auditor, and in risk and information systems control. I currently serve as the director of a cybersecurity consulting firm.