Preventing Internal Breaches: The Critical Role of Corporate Counsel


This is a virtual event, accessible over phone. Access instructions will be provided after registration.


This is a complimentary program sponsored by UnitedLex.

Errors caused by a company’s internal employees remains one of the top reasons a cybersecurity breach occurs, which results in significant reputational and economic damage.  As corporate counsel takes an increasingly critical role in crisis management for the business, they must be more active in ensuring that their employees are trained in security issues to prevent breaches and prepared to handle and respond to breaches; otherwise, these businesses will face enforcement actions at both the federal and state levels.

What types of enforcement actions and sanctions are corporate counsel most likely to face in the case of breaches caused by employees?  Where does corporate counsel face the biggest challenges in developing and maintaining cybersecurity protections via their employees?  How can corporate counsel work with other internal teams to create effective systems and policies?  Join us for this 60-minute webinar where our panelists will discuss this questions and offer insights in developing an internal employee cybersecurity program to protect your business.

Educational Objectives:
• Understand the key areas where employees can expose a business to a data breach;
• Learn how to ensure effective employee cybersecurity training, including regular testing and auditing of cybersecurity practices;
• Gain strategies for working with internal teams to develop a holistic internal employee cybersecurity program.

Who would benefit most from attending this program?
Attorney/Counsel, General Counsel, VP, Directors

This webinar is a part of the Big Law Business In-House Council Series.


Debra L. Bromson
  • Assistant General Counsel
  • AAA Club Alliance Inc.

Ms. Bromson is currently Assistant General Counsel, AAA Club Alliance Inc., where she is responsible for providing legal, compliance and business advice relating to Data Privacy and Cybersecurity, information technology, E-Commerce, social media and marketing, business development and public affairs.  Previously, she was Head of Global Privacy and Senior Compliance Counsel for Jazz Pharmaceuticals, Inc.  In her role as Head of Global Privacy, she established the Global Privacy Office and was responsible for implementing the global privacy program and advising on all privacy-related business, legal and data security issues.  Prior to the Privacy role becoming full time, her primary areas of responsibility also included information technology contracting, product marketing, pharmacovigilance, and managed markets, trade and distribution. Previously, Ms. Bromson was Senior Counsel, Commercial and Privacy for AstraZeneca Pharmaceuticals LP where she also helped lead the development of the privacy program.

Ms. Bromson is the Secretary of the Health Law Committee, and a member of the IT, Privacy and E-Commerce Committee of the Association of Corporate Counsel.  She is a member of and has been a frequent speaker for the International Association of Privacy Professionals.  She also was a founding member and served on the board of directors of the International Pharmaceutical Privacy Consortium.

Ms. Bromson received her AB from Cornell University, her JD from Georgetown University Law Center, and an LLM from New York University School of Law.

Aileen Schwartz
  • VP & Assistant General Counsel
  • Hill International, Inc.

Aileen Schwartz is vice president and assistant general counsel for Hill International, Inc. which specializes in project management, construction management and real estate claims worldwide. She is currently responsible for drafting, negotiating, reviewing, managing, maintaining and administration of all leases and contracts in the Americas for Hill International, Inc. which has over 100 offices worldwide.

Ms. Schwartz is a generalist and has extensive experience within a wide variety of real estate and construction areas including leasing, real estate sales agreements, loan documents, construction agreements, contractor agreements, brokerage agreements, construction management agreements, project management agreements, and real estate claims agreements from her various positions. Ms. Schwartz has represented both the owner and the tenant for lease negotiations. She has been practicing law for over 24 years and has worked in-house at two companies as well as in law firms. Previously she was general counsel for The Quaker Group which specialized in real estate development and construction.

Ms. Schwartz founded the Women’s Committee for GPACC (formerly DELVACCA) and remains as a chairperson (2011-present). She served as a board member for GPACC (formerly DELVACCA) from 2007-2009 and 2011-2013, and is active in the GPACC Chapter.

She graduated magna cum laude with a BA from the University of Pennsylvania and also received her JD from the University of Pennsylvania Law School.

Philip N. Yannella
  • Partner
  • Ballard Spahr

As Co-Practice Leader of Ballard’s Privacy and Data Security Group, and Practice Leader of the firm’s E-Discovery and Data Management Group, Philip N. Yannella provides clients with 360-degree advice on the transfer, storage, and use of digital information.

Phil regularly advises clients on the Stored Communications Act (SCA), Computer Fraud and Abuse Act (CFAA), EU-US Privacy Shield, General Data Protection Regulation (GDPR), Defense of Trade Secrets Act, PCI-DSS, Telephone Consumer Protection Act (TCPA), New York Department of Financial Services Cybersecurity Regulations, ISO 27001 compliance, HIPAA Security Rules, and FTC enforcement activity, as well as eDiscovery issues—leveraging his experience serving as National Discovery Counsel for more than two dozen companies in nationwide litigation. He harnesses his deep knowledge of privacy, data security, and information governance laws to help multinational companies develop global information governance programs to comply with overlapping, and sometimes conflicting, laws. Phil serves on the advisory board for the ACC Foundation’s Cybersecurity Survey, the largest survey of in-house counsel on cybersecurity issues.

Phil has extensive experience in complex litigation and investigations involving digital evidence, particularly data breaches, class actions, and theft of trade secrets. He guides clients through data breaches, including identifying exposure, facilitating public notice under state and federal laws, coordinating forensic examinations, negotiating report resolution, and managing resolution. He frequently works with experts to investigate the usage, availability, and reliability of structured datasets in the context of class certification, damages models, proportionality, and spoliation motions. 
Phil is a frequent commentator, presenter and author on legal issues related to data privacy, cybersecurity, eDiscovery and information governance. He received a 2017 Readers' Choice award from JD Supra for his writing on cybersecurity issues. He is the author of Pennsylvania eDiscovery (ALM Media).

R. Jason Straight
  • Senior Vice President, Chief Privacy Officer – Cyber Risk Solutions
  • UnitedLex

Jason is Senior Vice President and Chief Privacy Officer at UnitedLex.  In this role, Jason manages the company’s internal privacy program and leads the UnitedLex Cyber Risk Solutions practice.  Jason has managed dozens of cyber security investigations and data breach events for clients in a wide variety of industries and settings.  As a recognized expert in his field, Jason is a frequent speaker and author on topics relating to cyber security, privacy, data risk management and data breach response. Before joining UnitedLex, Jason was a managing director in Kroll, Inc.’s Cyber Investigations Practice where he advised clients in a wide variety of areas including data breach response, data privacy, computer forensics and data risk management.  Prior to that, Jason held numerous positions at Kroll Ontrack, Inc. and was a member of the company’s executive team where, among other things, he led and managed the development of the company’s incident response and cyber investigations practice.  Jason began his legal career as an associate in the New York office of Fried, Frank, Harris, Shriver & Jacobson, LLP.

Jason is admitted to practice law in New York State and is a member of the American Bar Association, where he is a member of the Science & Technology Law Section, and the New York City Bar Association, where he is a member of the Information Technology Law Committee, and the Task Force on National Security and the Law.  He is also an active member of the International Association of Privacy Professionals and is a Certified Information Privacy Professional (CIPP/US).

Katherine P. Simms
  • Legal Editor
  • Bloomberg Law

Katherine P. Simms joined Bloomberg BNA in 2016 as a Legal Editor. She covers federal and state employment law developments and Fair Labor Standards Act litigation. Katherine received her B.A. from the University of Maryland, Baltimore County and J.D. from the University of Maryland Francis Carey School of Law.

Continuing Education

COA, CLE 1.0
Practice Areas:
A basic understanding of cybersecurity issues.
Production Date: