In a world of increased corporate and individual accountability for cybersecurity incidents, almost every visible security incident triggers a government inquiry, and many inquiries turn into full-blown government investigations. This session will discuss best practices for proactively preparing to respond well to a future inquiry or investigation, and for handling an investigation that does arise – with the goal of ensuring the investigation is successfully closed without an enforcement action. We bring together a panel of experienced security leaders who have faced many inquiries and investigations as well as formal enforcement actions by the Department of Justice and the Securities and Exchange Commission.