Cybersecurity Law: A View from the Front Lines 

Congress has just passed legislation requiring owners and operators of critical infrastructure to notify the federal government following a cyber breach. The requirement, made more urgent by fears that Russia’s war with Ukraine will spill over into attacks on America's energy, financial, and other critical infrastructure, is the latest entry to the growing catalog of cybersecurity-related laws, including new state measures and proposed Securities and Exchange Commission disclosure requirements.  

Policymakers at the state and federal level continue to search for the right balance of collaboration and enforcement. This one-hour session will explore recent developments in cybersecurity law, offering both pragmatic advice on compliance and litigation strategy as well as big picture insights on the direction of U.S. cybersecurity policy. 

Travis LeBlanc is the vice chair of the cyber/data/privacy practice at Cooley and a Senate-confirmed member of the U.S. Privacy and Civil Liberties Oversight Board. He has guided leading tech corporations through enforcement proceedings and class action lawsuits.

 

Alicia Lowery Rosenbaum is Vice President and Associate General Counsel for Cybersecurity Technology and Trust at Salesforce, where she provides strategic counsel on risk management and governance to the company's security engineering and operations teams.

Jim Dempsey is a Senior Policy Advisor for the Program on Geopolitics, Technology and Governance at Stanford’s Cyber Policy Center. He is the author of Cybersecurity Law Fundamentals, a handbook for practitioners published in 2021 by the International Association of Privacy Professionals (IAPP). 

Moderating the session will be Andrew J. Grotto, Director of the Program on Geopolitics, Technology, and Governance and former Senior Director for Cyber Policy at the White House in both the Obama and Trump Administrations.