- Jennifer C. Archie, Latham & Watkins
- Jennifer A. Beckage, The Beckage Firm
- John P. Carlin, Paul Weiss
- Jennifer A. Coughlin, Mullen Coughlin
- Chris Cwalina, Norton Rose Fulbright
- Will Daugherty, Norton Rose Fulbright
- Luke Dembosky, Debevoise & Plimpton
- Heather Egan, Orrick
- Ashden Fein, Covington
- Ffion Flockhart, Allen & Overy
- Nicole Friedlander, Sullivan & Cromwell
- Beth George, Freshfields
- Amelia M. Gerlicher, Perkins Coie
- Scott N. Godes, Barnes & Thornburg
- Daniel P. Greene, Octillo Law Firm
- Katherine Doty Hanniford, Alston & Bird
- Sean Hoar, Constangy, Brooks, Smith & Prophete
- Craig A. Hoffman, Baker Hostetler
- Robert J. Hudock, King & Spalding
- Antony (Tony) Kim, Latham & Watkins
- Theodore J. Kobus III, Baker Hostetler
- Natasha G. Kohne, Akin
- David C. Lashway, Sidley & Austin
- Scott T. Lashway, Mintz
- Travis LeBlanc, Cooley
- Dominique Shelton Leipzig, Mayer Brown
- Anthony J. Lewis, Sullivan & Cromwell
- Erez Liebermann, Debevoise & Plimpton
- Paul H. Luehr, Manatt, Phelps & Phillips
- Patrick D. McNally, Octillo
- Edward R. McNicholas, Ropes & Gray
- Maneesha Mithal, Wilson Sonsini
- David Navetta, Cooley
- Andrew S. Pak, Perkins Coie
- Dominic A. Paluzzi, McDonald Hopkins
- Jim Pastore, Debevoise & Plimpton
- Kimberly Kiefer Peretti, Alston & Bird
- Jeannie S. Rhee, Paul, Weiss
- William E. Ridgway, Skadden
- Guadalupe Sampedro, Cooley
- Sunil Shenoi, Kirkland & Ellis
- David A. Simon, Skadden
- John Reed Stark, John Reed Stark Consulting
- Phyllis B. Sumner, King & Spalding
- Tara Swaminatha, Zero Day Law
- Aravind Swaminathan, Orrick
- Serrin Turner, Latham & Watkins
- Liisa M. Thomas, Sheppard Mullin
- Patrick Van Eecke, Cooley
- Jami Vibbert, Arnold & Porter
About the Incident Response 50: Cybersecurity Docket’s Incident Response 50 is our list of the 50 best data breach response lawyers in the business. Based on nominations, input from numerous senior lawyers and other professionals in the field, and considerable research, we tried to answer a simple question:
Who would you hire if your company suddenly found itself the victim of a data breach?
We also imposed three key requirements:
- Candidates for the Incident Response 50 must be in the private sector for at least the past two years.
- Candidates for the Incident Response 50 must have a practice that is dedicated primarily to data breach response work.
- Candidates for the Incident Response 50 must be attorneys (as opposed to accountants, economists or other experts).