Over the past decade, cybersecurity law and regulation has undergone significant changes intended to reflect the growing threat of nation-state threat actors and ransomware; the increasing reliance on technology, artificial intelligence, and big data; and the recent emphasis on privacy. This course will highlight recent and important developments in cybersecurity, as well as dive into federal and state regulatory developments in area of cybersecurity and its effects on non-regulated and regulated entities in the United States. Specifically, we will examine some of the recent disrupters in the cybersecurity space, how it has informed United States policy and how it may shape current and emerging legislation in this space, how these laws and regulations may impact companies in both regulated and un-regulated environments, and finally practical tips that lawyers should consider when considering cybersecurity law.
Key topics to be discussed:
Today’s Cybersecurity Environment: Ransomware, Resiliency, Supply Chain, and AI
The Current Cybersecurity Regulatory and Enforcement environment: Increasing regulation and principal-to-performance-based regulation
The 2023 U.S. Cybersecurity Strategy: Potential impacts to current and emerging laws and regulations
Putting Regulatory Expectations to Practice: Practical things for lawyers to consider
Date: March 31, 2023
James Chou | Orrick
James Chou assists clients in a wide range of regulatory, compliance, corporate and transactional matters. His transactional work includes mergers and acquisitions, joint ventures, credit facilities and vendor agreements. His regulatory practice focuses on regulatory compliance, cybersecurity and privacy.
Prior to joining Orrick, James was an associate at Buckley LLP. Previously, he spent nearly 10 years as a Defense Analyst and a Senior Operations Research Analyst for the U.S. Army, where he focused on cybersecurity, defense policy, and program analysis.
James is a Certified Information Systems Security Professional (CISSP) and a Certified Data Privacy Solutions Engineer (CDPSE). He is conversational in Mandarin.
I. Today’s Cybersecurity Environment: Ransomware, Resiliency, Supply Chain, and AI | 1:00pm – 1:15pm
II. The Current Cybersecurity Regulatory and Enforcement environment: Increasing regulation and principal-to-performance-based regulation | 1:15pm – 1:30pm
III. The 2023 U.S. Cybersecurity Strategy: Potential impacts to current and emerging laws and regulations | 1:30pm – 1:45pm
IV. Putting Regulatory Expectations to Practice: Practical things for lawyers to consider | 1:45pm – 2:00pm