Cybersecurity Is Not One Size Fits All: Addressing Night and Day Differences for Solos/Small Firms, Megafirms, Companies, Government, and Nonprofits

Level: Advanced
Runtime: 95 minutes
Recorded Date: September 12, 2018
Click here to share this program


  • The fundamentals of cybersecurity risk management that everyone needs to know
  • How practice setting, entity size, industry, and other factors affect approaches to cybersecurity
  • Titanic cybersecurity mistakes: solos/small firms vs. megafirms/corporate giants
  • Best practices to avoid cybersecurity nightmares
Runtime: 1 hour and 30 minutes
Recorded: September 12th, 2018


All lawyers face cybersecurity challenges, regardless of their practice setting or organization size. It does not matter if you have no IT department or designated budget, every lawyer and every business must address cybersecurity risks. Companies, law firms (from solo to megafirm), nonprofits, and government entities are all targets, and no one is safe. But cybersecurity is not one size fits all. Join us to hear perspectives from seasoned cybersecurity practitioners with a wide range of experience in different practice settings.

This program was recorded on September 12th, 2018.

Provided By

American Bar Association


Randy Sabett

Special Counsel
Cooley LLP

Randy V. Sabett, CISSP, counsels clients on a wide range of cutting-edge cybersecurity, privacy, IoT, IT licensing and intellectual property issues. Randy helps clients develop strategies to protect their information, including advising companies on developing and maintaining appropriate internal controls to meet privacy and cybersecurity requirements. He also drafts and negotiates a wide variety of technology transaction agreements. Having previously served as an in-house counsel to a Silicon Valley startup, Randy employs a pragmatic approach when structuring and negotiating such agreements. He has also counseled numerous clients on a variety of data breach scenarios, including running incident response for major commercial retailers, large financial institutions, on-line service providers and healthcare organizations.

Alan C. Raul

Sidley Austin LLP

ALAN RAUL is the founder and leader of Sidley’s highly ranked Privacy and Cybersecurity practice. He represents companies on federal, state and international privacy and cybersecurity issues, including global data protection and compliance programs, data breaches, consumer protection issues and internet law. Alan advises companies regarding their cybersecurity and information governance and preparedness, and helps them address crisis management for data security incidents. Alan’s practice involves litigation and counseling regarding consumer class actions and investigations, enforcement actions and policy development by the FTC, State Attorneys General, SEC, Department of Justice and other government agencies.

Alan provides clients with perspective gained from extensive government service. He previously served as Vice Chairman of the White House Privacy and Civil Liberties Oversight Board, General Counsel of the Office of Management and Budget, General Counsel of the U.S. Department of Agriculture, and Associate Counsel to the President.

Alan serves as a member of the Data Security, Privacy, and Intellectual Property Litigation Advisory Committee of the U.S. Chamber Litigation Center (affiliated with the U.S. Chamber of Commerce). He also serves on the American Bar Association’s Cybersecurity Legal Task Force by appointment of the ABA President, and as a member of the Practicing Law Institute’s Privacy Law Advisors Group.

Alan has represented a Special Cybersecurity Review Committee of the Board of Directors of a major tech company in connection with its independent investigation of the company’s handling of major data breaches.

Joe D. Whitley

Baker, Donelson, Bearman, Caldwell & Berkowitz, PC

Mr. Whitley represents clients nationally and internationally in white collar criminal matters and regulatory enforcement, corporate internal investigations, Foreign Corrupt Practices Act (FCPA) and U.S. export controls and compliance. He also advises clients on corporate compliance, health care fraud and FDA-related matters.

Mr. Whitley has had a wide-ranging career in the Department of Justice (DOJ). During the Ronald Reagan and George H.W. Bush administrations, he served as Acting Associate Attorney General, the third-ranking position at Main Justice. He was appointed by Presidents Reagan and Bush, respectively, to serve as the U.S. Attorney in the Middle and Northern Federal Districts of Georgia. Throughout his career, Mr. Whitley served under five U.S. Attorneys General and four Presidents in a number of key operational and policy positions. Earlier in his career, Mr. Whitley served as an Assistant District Attorney in the Chattahoochee Judicial Circuit in Columbus, Georgia. Mr. Whitley maintains strong professional relationships with the state and federal law enforcement community.

In 2003, Mr. Whitley was appointed by President George W. Bush as the first General Counsel of the U.S. Department of Homeland Security (DHS), the highest ranking legal official at DHS. He held that position for two years working for DHS Secretaries Tom Ridge and Michael Chertoff, before returning to private practice.

Mr. Whitley leads a team of lawyers in the Firm's Government Enforcement and Investigations practice group who conduct sensitive high level investigations for both public and private sector institutions. Mr. Whitley's practice focuses on corporate defense and representation of clients in complex civil and criminal enforcement matters brought by the DOJ, other federal agencies, State Attorneys General and local prosecutors. He has represented numerous individuals and corporations in major government investigations throughout the United States and internationally. Mr. Whitley is a frequent speaker on white collar, compliance and corporate governance issues.

Stephen S. Wu

Of Counsel
Silicon Valley Law Group

Stephen Wu is Of Counsel with Silicon Valley Law Group. He advises clients on information governance matters, focusing on information security, privacy, mobile computing, ediscovery preparedness, records management, and computer-related investigations. He reviews and writes sophisticated information security policies for large enterprises, and assists in data security regulatory compliance, incident response, breach notifications, and establishing secure electronic commerce systems. He drafts privacy policies for clients, including ones for U.S. companies with European and Asian operations. Steve assists clients in managing enterprise mobile device programs, including writing bring your own device (BYOD) policies.

In addition, Steve represents start up companies as outside general counsel, including providing assistance with business formation and deals in which he drafts and negotiates technology-related agreements, such as master service agreements, online application/XAAS/cloud agreements, terms of service, licenses, joint ventures, development agreements, and marketing agreements. His litigation practice focuses on trade secret misappropriation, computer fraud, and data theft. Also, his practice also includes copyright and trademark litigation, as well as general commercial litigation.

Finally, Steve advises clients on liability and information governance matters in cutting edge areas of technology such as robotics, autonomous driving and unmanned vehicle systems, unmanned aerial systems (drones), artificial intelligence, haptics, human-computer interfaces, Big Data, data property rights, Internet of Things, augmented and virtual reality, and 3D printing. Steve served as the 2010-2011 Chair of the American Bar Association Section of Science & Technology Law, and is a member of a number of the Sections Committees, including the Information Security, E-Discovery and Digital Evidence, E-Privacy Law, Artificial Intelligence and Robotics, and Big Data Committees. The American Bar Association published his book, A Legal Guide to Enterprise Mobile Device Management: Managing Bring Your Own Device (BYOD) and Employer-Issued Device Programs, in August 2013. Steve also serves as Chair of the High Technology Law Section of the Santa Clara County Bar Association. He has written or co-written five other books on information security and the law.

Before joining Silicon Valley Law Group, Steve was a Silicon Valley partner at Cooke Kobrick & Wu LLP. Before starting his private practice, was the second in-house attorney at VeriSign, Inc. At VeriSign, he was in charge of the team managing the company's policies and procedures (certificate policies and certification practice statements) supporting its secure ecommerce (public key infrastructure) services. Before VeriSign, Mr. Wu practiced with two large law firms, Jones Day and the firm now known as K&L Gates, in the areas of intellectual property, commercial, and general litigation, as well as technology licensing and transactions. From 1988 to 1990, Steve served as a law clerk to the Hon. Joseph P. Kinneary, U.S. District Court for the Southern District of Ohio.

Angeline G. Chen

Vice President, General Counsel and Chief Compliance Officer (CCO)
Siemens Government Technologies, Inc.

Angeline G. Chen brings practical and disciplined depth and breadth in the governance , compliance and risk management domains, with an established reputation for developing sustainable frameworks in which business activities thrive while remaining compliant in highly regulated industries. A disciplined and rational leader, she translates complex regulatory and technical requirements into actionable guidance and strategic direction that supports business objectives. Respected as a credible voice of expertise and integrity in decision making, risk management, and development of business strategies and planning, Ms. Chen earns a seat at the table wherever she serves and as an established leader within her peer communities in the areas of governance, compliance, investigations/audits, national security, and cyber.

Currently, as VP, General Counsel, Chief Compliance Officer, and Corporate Secretary at Siemens Government Technologies, Inc. (SGT), an indirect subsidiary of the German corporation Siemens AG, Ms. Chen oversees all of the company’s legal, contracting, compliance, governance and security activities. SGT is a federally compliant US defense contractor that delivers solutions to the government leveraging the full spectrum of Siemens’ globally trusted and recognized products and services.

Previously, Ms. Chen served in positions of increased responsibility and influence: as VP, General Counsel, and CCO for Marinette Marine Corporation, a premier mid-sized shipyard that builds the Freedom-class Littoral Combat Ship for the U.S. Navy; as Assoc. General Counsel for Technology & Advanced Concepts for Lockheed Martin Corporation (LM) where she served as the legal lead for a wide range of operational, regulatory, and technology domains, including cybersecurity, information opsec and assurance, and innovation; as Assoc. General Counsel at International Launch Services, a joint venture between LM and two Russian entities; as the Deputy Assoc. General Counsel for Infosec with NSA; and as Assistant General Counsel with INTELSAT. She began her career in private practice specializing in antitrust and securities complex litigation focused on high technology and manufacturing sectors.

From 2000 to 2013, as an Adjunct Professor at GMU Law School, Ms. Chen co-taught a national security and technology course with former Secretary of the Army and VA congressman, John O. Marsh. She also taught organizational behavior management as an Adjunct Professor for the MBA program at the University of Maryland, where she also served as an Executive-in-Residence in 2005.

Ms. Chen is a graduate of the Honors Program at Villanova University, where she obtained her undergraduate and law degrees, and also holds an LL.M in International and Comparative Law from the Georgetown University Law Center, and an MBA from the University of Maryland.

Similar Courses

Card image cap
65 minutes
#MeToo - Media Frenzy, New Era in Sexual Harassment, or Both?
Sexual harassment claims against celebrities and high-profile men continue to dominate media coverage in 2018. There is no question that employers are legally required to investigate complaints of harassment in the workplace and take action to punish employees who commit acts of harassment.

American Bar Association


Add to Cart
Card image cap
63 minutes
2018 CA Consumer Privacy Act: The Big Tail Wagging the U.S.
In this session, two leading information governance attorneys will share why you need to and how you can be ready.



Add to Cart
Card image cap
59 minutes
2018 Global Discovery: International Compliance in the Cloud
Join us for a session examining legal and regulatory changes in store for 2018 and best practices for compliance in the cloud.



Add to Cart
Card image cap
60 minutes
2019 HIPAA Update: Enforcing Privacy & Security Standards
In this session, we will discuss the most critical issues in the HIPAA update and best practices for enforcing privacy & security standards in your company.



Add to Cart