Registration and Breakfast

Sponsored by Virtus Cybersecurity, LLC

Welcome and Introductions

• Timothy Opsitnick, Executive Vice President and General Counsel, TCDI

Keynote Discussion: Federal Regulatory Update

• Douglas Geho, Deputy Director, Consumer Protection Bureau, Federal Trade Commission
• Brian Ray, Associate Dean and Leon & Gloria Plevin Professor, CSU Law (lead)

Douglas Geho has extensive enforcement, regulatory, and litigation experience in the federal government. Before his appointment as a Deputy Director of the Federal Trade Commission’s Consumer Protection Bureau, Geho served as an Attorney Advisor to Commissioner Melissa Holyoak handling consumer protection matters for her office. This session will discuss policy and enforcement at the FTC.

Cybersecurity Litigation: Plaintiff and Defense Perspectives

• Douglas Meal, Adjunct Professor of Law, CSU College of Law
• John A. Yanchunis, Complex Litigation Group, Morgan & Morgan P.A.

While the risks of data privacy and data breach litigation are substantial, the legal standards are in flux and may depend on the court and jurisdiction in which the case lies. Hear two of the most experienced members of the data breach litigation Bar share their differing perspectives on cybersecurity litigation. Douglas Meal has defended organizations in some of the most high-profile data breach class actions, including Target, The Home Depot, TJ Maxx, Wyndham Hotels and many others. John Yanchunis has spent over two decades litigating data breach claims and in negotiating many of the most significant data breach litigation settlements, including Capital One, Equifax, Yahoo!, and the Office of Personnel Management.

Networking Break

Sponsored by McDonald Hopkins LLC

Keynote: Avoiding the AI “Wild West”

Fireside Chat with Travis LeBlanc

• Travis LeBlanc, Partner, Cooley, LLP
• Brian Ray, Associate Dean and Leon & Gloria Plevin Professor, CSU College of Law

Hear Travis LeBlanc discuss how the U.S. government risks creating an AI “wild west” if proper guardrails to for these powerful systems are not established and maintained. The conversation draws on his extensive experience in government and the private sector with regulation of emerging and disruptive technologies. Until January 2025, LeBlanc was a Presidentially nominated and Senate-confirmed Member of the U.S. Privacy and Civil Liberties Oversight Board. He was previously the Federal Communications Commission’s Enforcement Bureau Chief and earlier served as senior advisor to former California Attorney General Kamala Harris and also served as an arbitrator under the EU-U.S. Privacy Shield Framework.

Global Interoperability of Regulatory Requirements

• Andrew Bjerken, VP and Chief Privacy Officer, Marriot Vacations Worldwide
• Jessica Cohen, Regulatory Affairs Counsel, Verizon
• Frances Floriano Goins, Partner, UB Greensfelder LLP
• Jennifer Ruehr, Co-Managing Partner, Hintze Law PLLC
• Alexander White, Privacy Commissioner, Bermuda

This panel will delve into the complexities of navigating the evolving landscape of global data privacy and cybersecurity regulations. Experts will discuss practical strategies for establishing robust programs that address the complexities of complying with diverse requirements in the U.S. and other jurisdictions. We will explore how organizations can create adaptable frameworks to safeguard sensitive data while maintaining operational efficiency in a dynamic regulatory environment.

Lunch

State Law Updates

• Kate Jarret Furstenau. Associate, McDonald Hopkins LLC
• Ariel Fox Johnson, Principal, Digital Smarts Law & Policy LLC (lead)
• John Landolfi, Chair, Data Security & Privacy, Vorys LLP
• Bailey Sanchez, Deputy Director, US Legislation, Future of Privacy Forum

More than 19 states have passed comprehensive consumer data privacy laws. least 19 states as well as laws that focus on specific areas like consumer health data, children’s data, and genetic data. State regulators also increasingly are actively enforcing these laws. Join this panel to learn what trends we’re seeing in these state laws and regulations and how organizations should navigate their requirements.

Featured Panel: Navigating Privacy & Security in a New World Order

• Kirk Nahra, Co-Chair Artificial Intelligence, Co-Chair Cybersecurity and Privacy, WilmerHale LLP

The law of privacy and data security is constantly changing. This year, beyond this ongoing legal change, advisers in this space also need to understand the changing dynamics of enforcement and the regulatory process across both the state and federal levels.  This session will highlight the major issues to be aware of and provide some thoughtful suggestions on how best to navigate this changing environment.

Networking Break

Sponsored by UB Greensfelder LLP

Leveraging AI for Enhanced Cyber Defense

• Kevin Goodman, Managing Director, Partner, BlueBridge Networks
• Tony Pietrocola, Co-Founder and President, AgileBlue
• Amanda Towler, Independent Consultant. Sudogirl Consulting, Adjunct Professor CSU Law
• Spence Witten, Senior Advisor, 38 North Security (lead)

Threat actors increasing rely on artificial intelligence (AI)-powered cyberattacks, leveraging AI to automate and enhance various attack vectors, including creating convincing phishing emails, deepfakes, and even automating social engineering tactics. At the same time, AI is revolutionizing cyber defense by enhancing threat detection, automating responses, and enabling organizations to identify and mitigate threats faster and more precisely. Join this panel to learn about how AI is transforming the cybersecurity landscape.

Incident Preparedness and Response

• Robert Eckman, Enterprise Manager of Data Protection and Privacy, Parker Hannifin (lead)
• Serge Jorgensen, Principal, Office of Strategic Cyber Intelligence, Crowe
• Gabrielle Hartstein, Associate, Dinsmore LLP
• Matt Kipp, Director of IT Risk, Centric Consulting
• Tim Ragones, Managing Director, Joele Frank
• Candice Hoke, Co-Founding Director, Center for Cybersecurity & Privacy Protection

The speed, sophistication and scale of cyber threats reached unprecedented levels in 2024 and early 2025 with AI-assisted attacks, multipronged intrusions, and operational disruption increasing the cost to organizations. This rapid evolution underscores the critical need for a robust and effective incident response strategy. Hear from experienced technical, legal and communication professionals on critical considerations and best practices to prepare and respond to cyber attacks.

Cybersecurity & Privacy Protection: 10 Years at CSU|LAW

• Jeff Brancato, Executive Director, Northeast Ohio CyberConsortium
• Robert Eckman, Enterprise Manager of Data Protection and Privacy, Parker Hannifin
• Timothy Opsitnick, Executive Vice President and General Counsel, TCDI
• Kirk Herath, Cybersecurity Strategic Advisor, State of Ohio, Adjunct Professor, CSU Law Candice Hoke, Co-Founding Director, Center for Cybersecurity & Privacy Protection
• Brian Ray, Associate Dean and Leon & Gloria Plevin Professor, CSU Law (lead)

Cleveland State University College of Law launched the Center for Cybersecurity & Privacy Protection in April 2015 with the first annual Conference. That same year then-Attorney General Mike DeWine created CyberOhio, the state’s first cybersecurity policy advisory group and leading public and private Northeast Ohio organizations launched the NortheastOhio CyberConsortium. Join a group of leaders from these organizations as we reflect on how CSU Law’s program has evolved and the strong collaborations we’ve developed with CyberOhio, NEOCC and others to strengthen the state and the region’s cyber resilience over the past 10 years.

Reception

Sponsored by Centric Consulting

Welcome and Introductions

Data Ethics (Ohio Ethics CLE Credit pending)

• Kirk Herath, Cybersecurity Strategic Advisor, State of Ohio, Adjunct Professor, CSU Law (lead)
• Brian Mannion, Director of Data Privacy, Northwest Bank
• Chris Cronin, Partner, HALOCK

Organizations face difficult challenges when it comes to ethically informed data collection, sharing and use. There also is growing demand for incorporating ethical considerations into products and services involving big data, AI and machine learning and increasing recognition of the potential bias in them. This panel will discuss these challenges as well as emerging best practices for ethical data collection, processing and use and mitigating bias in the use of AI.

Integrating Cybersecurity and Privacy Compliance

• David Croft, Chair, Cybersecurity, Myers Roman LLP
• Holly Drake, CISO, State of Ohio (lead)
• Maxwell Herath, Associate, Porter Wright LLP
• Mehmet Munur, Partner, Taft LLP
• Bogdan Salamakah, CEO, Virtus Cybersecurity, LLC

Companies of all sizes require effective and efficient cybersecurity and data privacy programs so secure sensitive data and comply with the growing number of state, federal and international laws and regulations. While privacy and security each cover distinct areas of risk and compliance obligations, integrating these programs is essential to managing an organizations risk profile. Learn from professionals in both domains on ways organizations of all sizes can develop a comprehensive, robust and resilient privacy and cyber-risk programs.

Networking Break

Sponsored by Benesch LLP

AI Regulation and Assessment

• Brenda Leong, Director, AI Division, Zwillgen PLLC
• Matthew Neely, Director of Information Security, Progressive Insurance
• Brian Ray, Associate Dean and Leon & Gloria Plevin Professor, CSU Law (lead)
• Michael Stovsky, Partner and Practice Chair, Benesch LLP
• Cory Scott, CISO, Cybersecurity Advisor
• Serge Jorgensen, Principal, Office of Strategic Cyber Intelligence, Crowe

From early implementation of the historic EU AI Act to the Colorado AI Act, the trend continues towards increasing AI-related, laws, regulations and best practices aimed at requiring organizations to understand and manage the risks posed by AI systems. This panel will discuss how these trends are shaping the use of AI in organizations, the risks these trends create, and the challenges organizations face in developing AI governance.

Information Sharing and Cyber Crime Investigations

• Jeffrey Biller, Professor, United States Air Force Academy, Adjunct Professor, CSU Law
• Timothy Opsitnick, Executive Vice President and General Counsel, TCDI (lead)
• Daniel Riedl, Assistant U.S. Attorney, Department of Justice

The Federal Bureau of Investigation (FBI) and the Department of Justice (DoJ) partner on federal investigations of cyber attacks and work closely with the Cybersecurity & Infrastructure Security Agency (CISA) to share intelligence and engage with victims. Join federal agency representatives and cyber crime experts to discuss the benefits of engaging with law enforcement. recent cybercrime trends and the rise of state-sponsored cyber espionage and sabotage.