The New Era of Privacy and Cybersecurity for Law Firms

Level: Intermediate
Runtime: 62 minutes
Recorded Date: May 21, 2019
Click here to share this program
Download PDF


  • Evolving Duties, Professional and Otherwise, Relating to Cybersecurity and Data Privacy Practices for Lawyer
  • Practical Law Practice Management Tips to Comply with Professional and Legal Duties
  • The Art of Transferring Risk
  • Preparation
Runtime: 1 hour
Recorded: May 22, 2019


This program will help attorneys recognize and comply with existing professional responsibility and ethical mandates with the enactment of recent state cybersecurity and privacy regulations. Our experts will provide an overview and application of ABA Model Rules 1.1, 1.4, 1.6, and 5.3, as they apply to the topic of cybersecurity and privacy regulations.

This program was recorded on May 22nd, 2019

Provided By

American Bar Association


Michael Barrett

Risk Control Director

Michael Barrett is the Risk Control Director for CNA’s Lawyers Professional Liability Program. In this role, he manages a team of highly qualified attorneys who are responsible for the design, content and distribution of risk control content relevant to the practice of law. He also collaborates with executive leadership from CNA’s underwriting and clams teams to develop and execute strategies for profitable growth of the program. He is a frequent lecturer at both CNA sponsored programs and at national seminars hosted by industry-leading organizations. He also frequently publishes articles focused on legal professional liability risks as well as other commercial liability related to the operation of law practices.

Mr. Barrett graduated from Allegheny College with a B.S. in biochemistry and received his JD from Chicago Kent College of Law, where he also earned the Intellectual Property Law Certificate. Prior to joining CNA, he was a successful defense litigator specializing in the defense of commercial and professional liability lawsuits, and first-chaired twenty-three jury trials to verdict. Mr. Barrett is a member of the American Intellectual Property Law Association (AIPLA), PLUS, and the Defense Research Institute (DRI). He is also a Registered Professional Liability Underwriter (RPLU). In addition he is a Registered Patent Attorney with the United States Patent and Trademark Office. He is admitted to practice in Illinois and Pennsylvania.

Melissa Ventrone

Clark Hill PLC

Melissa K. Ventrone is a Member in the firm’s Chicago office where she addresses her clients’ cybersecurity needs. She reacts swiftly and decisively when she is enlisted on a cybersecurity breach. As leader of the cybersecurity breach response team, she focuses her experienced group of first responders, including lawyers and forensic investigators, on around-the-clock management of the situation and minimizing damage by working to limit any public or regulatory fallout. When not managing her clients’ urgent breach concerns, Melissa is a proactive consultant in managing data privacy and security risks. She is also a zealous courtroom advocate in cybersecurity litigation.

Melissa is a Certified Informational Privacy Professional (CIPP/US).

Melissa’s experience extends from small breaches impacting a few hundred people to larger breaches impacting millions on behalf of merchants, financial institutions, medical providers and educational institutions. Melissa and her team work with clients to preserve evidence, determine a breach's scope, document the response and craft communications that both meet legal requirements and protect a company's brand. She also advises on establishing incident call centers and staff training, and formulates other methods to protect impacted individuals from potentially negative outcomes.

Melissa has a track record of success in defending companies facing data security and privacy litigation, including class actions. She has represented a variety of clients in multiple industries in disputes related to privacy, invasion of privacy, contracts, consumer fraud, statutory claims and other matters. She has litigated cases of first impression establishing favorable law, including obtaining summary judgment in a class action case alleging damages from the theft of a hard drive, and successfully defending a merchant against a class action arising out of a credit card breach.

Melissa advises clients on compliance with state, federal and international laws and regulations. She helps companies ensure that policies, procedures and cyber crisis response plans are sufficient. Melissa runs breach simulation exercises, which are very useful tools for training, testing and enhancing a company's response time in a breach situation. When vulnerabilities are found, Melissa works with management teams, boards of directors, vendors, outside consultants and other third parties to build and execute risk-reducing action plans.

In addition, Melissa drafts and negotiates contractual agreements concerning data use and retention and privacy and security, including cloud computing contracts. She also serves as a first responder for situations involving use or misuse of computers and other devices.

Melissa's leadership abilities extend beyond her legal practice. She recently completed a distinguished 21 years of service in the Marine Corps Reserve, holding several key positions, including Company Commander for a 200-person unit, Executive Officer for a 329-person company deployed to Afghanistan, Operations Officer for a 1,000-person motor transport battalion, and the Logistics Officer for Combat Logistics Regiment 4. She also volunteers as an ombudsman for the Employer Support for the Guard and Reserve in which she serves as a mediator on employment-related disputes.

Judy Selby

Judy Selby Consulting

Judy brings 25 years of insurance coverage litigation experience on behalf of insurers and policyholders. Her expertise in cyber insurance and coverage under various policy forms for today's emerging risks. She provides coverage evaluation, policy negotiation, and gap analysis services to companies across multiple industries. Judy also providers insurance due diligence, expert witness and litigation consulting services to both policy-holders and insurance companies in coverage disputes.

Prior to starting her consulting firm she was the co-chair of BakerHostetler’s Information Governance Team and founded the E-Discovery & Technology Management Team. She also defended class action lawsuits and had won the complete dismissal of a data breach class action in Polanco v. Omnicell, Inc., Civ. No. 13-1417 (NLH/KMW), slip op. (D.N.J. Dec. 26, 2013). Judy handled cutting-edge privacy, data breach, information governance, cyber insurance and insurance coverage matters. She successfully completed a course on Tackling the Challenges of Big Data with the Massachusetts Institute of Technology (MIT), Professional Education, and is a member of the newly formed ABA Big Data Committee and the Sedona Conference Data Security and Privacy Liability Working Group 11.

She has over 20 years of experience in large scale first- and third-party complex insurance coverage matters, providing a full range of services from opinion work, coverage gap analysis, claims counseling, broker liability, settlement negotiations, international arbitration and all phases of insurance coverage litigation.

Judy is a member of the Law360 Insurance Editorial Advisory Board, the Editorial Advisory Board of Law Technology News, the Professional Liability Underwriters Association, the Defense Research Institute, and the Claims and Litigation Management Alliance (CLM). She was selected as LawCrossing's Law Job Star in July 2014 and was featured in Law Technology News as a leading woman in technology in August 2014. Judy also was recently quoted in Reuters with regard to data breach class actions against Target.

Similar Courses

Card image cap
55 minutes
#ItsMyLane: Legal & Medical Ethics When Doctors Speak Out on Public Policy
From gun violence to abortion to medical marijuana, physicians feel increasing pressure to speak out on public policy issues. At the same time, public advocacy activities may expose physicians to licensure risks, prosecution, and even the threat of violence. Lawyers who advise physicians on such issues also face ethical and professional responsibility challenges, especially where there are legal and practical constraints on physicians' abilities to advocate for certain positions. Explore current controversies affecting physicians and public policy, and learn about the professional obligations of the lawyers who advise them.

American Bar Association


Add to Cart
Card image cap
93 minutes
'Scared. Ashamed. Crippled': Overcoming Mental Health Disabilities in Law
Feeling overwhelmed by your workload? Thinking about taking a mental health break from practice but worried about the stigma or impact it may have on your partnership track? Join Reed Smith counsel Mark Goldstein as he provides insight on how he was able to be a lawyer while coping with mental health disabilities. This very intimate discussion will also offer tips for attorneys who are currently struggling with mental health issues.

American Bar Association


Add to Cart
Card image cap
63 minutes
2018 CA Consumer Privacy Act: The Big Tail Wagging the U.S.
In this session, two leading information governance attorneys will share why you need to and how you can be ready.



Add to Cart
Card image cap
59 minutes
2018 Global Discovery: International Compliance in the Cloud
Join us for a session examining legal and regulatory changes in store for 2018 and best practices for compliance in the cloud.



Add to Cart
Previous Next