Skip to main content

Data Privacy, Cybersecurity, AI and Breach Response

8:55        Welcome and Introductions

9:00        Data Privacy Primer

Tara Cho, Womble Bond Dickinson, Raleigh

This session outlines the current state of laws, key factors for specific types of data and industries, and how to manage compliance.

9:59        Cybersecurity, AI and Other Technology

Tara Cho, Womble Bond Dickinson, Raleigh
Bill Koch, Womble Bond Dickinson, Winston-Salem
Amy Worley, Berkeley Research Group LLC, Raleigh

In this hour, panelists focus on key risk areas and how to mitigate risk without stifling innovation.

10:58      Break

11:08      Data Breach Response and Liability

Devon Ackerman, Kroll, New York, NY
Tara Cho, Womble Bond Dickinson, Raleigh
Ben Hunter, UHY LLP, Greensboro

In this session, learn how to respond to different types of data incidents, limiting liability and related exposures.

12:09      Adjourn

‡ Indicates portion providing Technology Training credit

Thank you

Thank you for joining us for Data Privacy, Cybersecurity, AI and Breach Response.

Description

Get ready to review topics related to data privacy, cybersecurity, AI and breach response, relevant across practices and industries.

Contributors

  • Devon Ackerman

    Devon Ackerman is the global head of incident response in the Cyber Risk practice of Kroll, based in New York. He is an authority on incident response and digital forensics. He has extensive experience in the investigation and remediation of cyber-related threats and incidents from his years with the Federal Bureau of Investigation as well as in the private sector.

    In his current role, Devon leads engagements for clients across a wide range of industries involving investigative digital forensics, intrusion response (unauthorized access), and malware analysis. He also serves as a Senior Forensic Science Team Lead, where he conducts and oversees digital evidence collection, triage, and preservation.

    Devon's extensive cyber investigative experience includes physical and cyber-based corporate espionage and sabotage investigations; ransomware and malware cyber intrusion events; unauthorized user access; PII and PHI compromise; malicious spear phishing and whaling campaigns; Office 365 and G Suite compromises and related log analytics; data destruction events; breach response; and other events involving misuse of networked endpoints and infrastructure.

    Devon joined Kroll from the FBI, where he was a Supervisory Special Agent and Senior Digital Sciences Forensics Examiner in the Digital Evidence Field Operations Unit. In this role, he oversaw and coordinated all FBI Digital Forensics-related field operations across the United States, spanning a variety of matters such as domestic terrorism, mass shootings, critical incident response events, and large-scale electronic evidence collections. He has also provided expert witness testimony in federal and state courts.

    During his time at the FBI, Devon developed a number of forensic tools that are still widely used. He was also the course material revision architect and co-author for the FBI's CART Tech Certification program and Digital Evidence Extraction Technician (DExT) training curriculums. He began his career with the FBI in 2008, where he co-founded the FBI's first North Carolina Cyber Security and Intrusion Working Group (eShield).

    Devon earned his B.S., magna cum laude, in Computer & Information Systems, Digital Forensics and MSc, magna cum laude, in Digital Forensic Science from Champlain College.

    Click here for more information about Devon.

  • Tara N. Cho

    Tara N. Cho is a Partner at Womble Bond Dickinson (US) LLP in Raleigh. She chairs the firm's Privacy and Cybersecurity Team. Her practice is dedicated to counseling clients on privacy and data security issues across industries such as technology, retail, e-commerce, healthcare, health-tech, and life sciences. She advises clients on matters related to the CCPA, CPRA and other state privacy laws, HIPAA, Gramm-Leach-Bliley Act, TCPA, CAN-SPAM, and other state and federal privacy, cybersecurity and data breach laws in the U.S. She also advises clients on the GDPR (and UK GDPR) and related requirements of European data protection laws.

    Tara helps companies establish and assess compliance programs, respond to data breaches and security incidents, conduct risk analyses, negotiate contracts that govern data use and security, respond to regulator requests and investigations, and address new and evolving issues stemming from the development of mobile and web-based applications, cloud computing, machine learning and AI tools, IoT devices, and other technology solutions that rely on personal data.

    Tara became certified as a legal specialist in Privacy and Information Security Law by the North Carolina State Bar Board of Legal Specialization in 2018 as part of the inaugural class of specialists in this field. She is also recognized by the IAPP as a certified information privacy professional for the US (CIPP/US) and Europe (CIPP/E).

    Tara earned her B.A. in English from Rhodes College and her J.D. from New England School of Law.

    Click here for more information about Tara.

  • Ben Hunter

    Ben Hunter is Principal at UHY LLP in Farmington Hills, MI, working remotely in Greensboro. He has over a decade of experience completing finance and information technology risk assessments for a variety of companies. He is responsible for the overall management of the Technology, Risk & Compliance practice in the Great Lakes region and maintains oversight of client relationships and compliance with AICPA, US, EU and other regulatory standards. Ben's unique perspective into the financial and information technology worlds allows him to communicate the cybersecurity and technology risks in clear language for the financial decision makers.

    Ben has extensive experience completing System and Organization Control (SOC) reporting, including SOC 1®, SOC 2®, SOC 3®, SOC for Cybersecurity, and SOC for Supply Chain. Additionally, he completes an array of cybersecurity risk assessments, IT control audits, and HIPAA assessments. His cybersecurity experience includes phishing and ransomware training, Business Continuity Planning / Disaster Recovery (BCP/DR) planning and testing, vulnerability management, and vCISO services.

    Ben is a licensed CPA in North Carolina and holds the following ceritifications: Certified Information Technology Professional (CITP), Certified Data Privacy Solutions Engineer™ (CDPSE®), Certified Information Security Manager® (CISM®), Certified in Risk and Information Systems Control® (CRISC®), Certified Information Systems Auditor® (CISA®).

    Ben has previously served as a Chief Information Security Officer (CISO) and led a CPA SOC Report practice.

    Ben earned his M.S. in AccountingUniversity of North Carolina at Greensboro.

    Click here for more information about Ben.

  • Bill Koch

    Bill Koch is the Chief Knowledge & Innovation Officer at Womble Bond Dickinson in Winston-Salem. He is a seasoned legal technologist with a passion for what's next.

    In his role as the Chief Knowledge & Innovation Officer at Womble Bond Dickinson (US) LLP, Bill and his team seek out and implement new and innovative ways to amplify legal service delivery through practice-focused, practice-forward processes, technologies, and information services.

    Bill earned his B.A. in History from Elon University and his Master's of Information Technology from Virginia Tech.

    Click here for more information about Ben.

  • Amy R. Worley

    Amy R. Worley is Managing Director & Associate General Counsel at Berkeley Research Group LLC (BRG) in Raleigh. She has honed her skills in helping businesses develop comprehensive privacy, data governance, and information management programs. She served as global chief privacy officer for a leading global pharmaceutical and medical device company with a market value of $1 billion.

    Amy currently serves as a fractional data protection officer for organizations worldwide, providing gap and risk assessments, developing remediation plans, liaising with global regulatory bodies, assisting clients in responding to security incidents, and advising boards of directors on data compliance related risk.

    Amy's certifications include the International Association of Privacy Professionals Certified Privacy Professional for the United States and Europe, Certified Privacy Program Manager, and she is a Fellow of Information Privacy, as well as being a certified Health Insurance Portability and Accountability Act (HIPAA) Privacy and Security Expert.

    Amy leads BRG's Privacy and Information Governance practice group. She has deep industry experience building effective and sustainable multinational data compliance programs across industries. Her clients benefit from her experience working with regulators in the US, the European Union, and other parts of the world. She has partnered with global, national, and regional financial institutions, life sciences companies, laboratories, healthcare providers, electronic medical records providers, e-commerce marketplaces, data analytics and statistical companies, and digital real estate investment enterprises to build agile and effective digital compliance programs.

    Amy practiced law for 16 years before moving into industry and then into consulting. She advised on regulatory compliance with laws including HIPAA; Health Information Technology for Economic and Clinical Health Act (HITECH); Fair Credit Report Act (FCRA); Fair and Accurate Credit Transactions Act (FACTA); Gramm–Leach–Bliley Act (GLBA); US Securities and Exchange Commission "Red Flags Rule"; Bank Secrecy Act (BSA); Dodd–Frank Wall Street Reform and Consumer Protection Act ("Dodd–Frank); Children's Online Privacy and Protection Act (COPPA); Family Educational Rights Privacy Act (FERPA); European Union Data Protection Directive 95/46; European General Data Protection Regulation (GDPR); Brazilian General Data Protection Law (LGPD); Canadian Personal Information Protection and Electronic Documents Act, as amended (PIPEDA); and other US, Latin America, and Asian data privacy laws.

    Amy has provided expert testimony in US federal courts related to data breach notification obligations and has provided expert deposition testimony in other litigation. She has served on several nonprofit boards and won the North Carolina Governor's Award for Volunteer Service.

    Amy earned her B.A. in English from Mercer University and her J.D. from Mercer University School of Law.

    Click here for more information about Amy.

Click here to view Forms and CLE Policies, Terms and Conditions.

If paying by check, click here for a printable registration form. Please reference the live webcast program code 320RW6.


Certificate of Completion and Archived Video: Your certificate of completion and archived video will be available approximately two weeks of the program date and can be found in your CLE account. MCLE credit is available to registrants only on the day(s) of the live event. This archived content is offered solely for review purposes and is not a substitute for live attendance.

May 9, 2024
Thu 8:55 AM EDT

Duration 3H 14M

This live web event has ended.

For Technical Support
*for callers residing outside of the United States