- Jennifer C. Archie, Latham & Watkins
- Jennifer A. Beckage, The Beckage Firm
- John P. Carlin, Paul Weiss
- Jennifer A. Coughlin, Mullen Coughlin
- Chris Cwalina, Norton Rose Fulbright
- Luke Dembosky, Debevoise & Plimpton
- David N. Fagan, Covington
- Ashden Fein, Covington
- Ffion Flockhart, Norton Rose Fulbright
- Nicole Friedlander, Sullivan & Cromwell
- Beth George, Wilson Sonsini
- Amelia M. Gerlicher, Perkins Coie
- Scott N. Godes, Barnes & Thornburg
- Daniel P. Greene, Octillo Law Firm
- Sean Hoar, Constangy, Brooks, Smith & Prophete
- Robert J. Hudock, King & Spalding
- Antony P. Kim, Latham & Watkins
- Theodore J. Kobus III, BakerHostetler
- Natasha G. Kohne, Akin Gump
- David C. Lashway, Baker & McKenzie
- Scott T. Lashway, Manatt, Phelps & Phillips
- Travis LeBlanc, Cooley
- Dominique Shelton Leipzig, Mayer Brown
- Anthony J. Lewis, Sullivan & Cromwell
- Erez Liebermann, Debevoise & Plimpton
- Paul H. Luehr, Manatt, Phelps & Phillips
- Rohan Massey, Ropes & Gray
- Edward R. McNicholas, Ropes & Gray
- Douglas H. Meal, Orrick
- Wim Nauwelaerts, Alston & Bird
- David Navetta, Cooley
- Dominic A. Paluzzi, McDonald Hopkins
- Jim Pastore, Debevoise & Plimpton
- Kimberly Kiefer Peretti, Alston & Bird
- Michelle A. Reed, Akin Gump
- Stephen E. Reynolds, Baker McKenzie
- William E. Ridgway, Skadden
- Kari M. Rollins, Sheppard Mullin
- Guadalupe Sampedro, Cooley
- Lynn Sessions, BakerHostetler
- John Reed Stark, John Reed Stark Consulting
- Phyllis B. Sumner, King & Spalding
- Heather Egan Sussman, Orrick
- Tara Swaminatha, Zero Day Law
- Aravind Swaminathan, Orrick
- Liisa M. Thomas, Sheppard Mullin
- Serrin Turner, Latham & Watkins
- Patrick Van Eecke, Cooley
- Jami Vibbert, Arnold & Porter
- Aleksandra Vold, BakerHostetler
- Miriam H. Wugmeister, Morrison & Foerster
About the Incident Response 50: Cybersecurity Docket’s Incident Response 50 is our list of the 50 best data breach response lawyers in the business. Based on nominations, input from numerous senior lawyers and other professionals in the field, and considerable research, we tried to answer a simple question:
Who would you hire if your company suddenly found itself the victim of a data breach?
We also imposed three key requirements:
- Candidates for the Incident Response 50 must be in the private sector for at least the past two years.
- Candidates for the Incident Response 50 must have a practice that is dedicated primarily to data breach response work.
- Candidates for the Incident Response 50 must be attorneys (as opposed to accountants, economists or other experts).