Cybersecurity & Privacy for Legal and Compliance Professionals: What You Need to Know About From Incident Management to Privacy Breach
Virginia MacSuibhne, JD, CCEP, Chief Compliance and Privacy Officer, Roche Diagnostics
Presenters/Panelists 11am – 12pm:
Michelle Bazu, JD, Cybersecurity Counsel, VMWare
Stuart Lee, Doctorate, Chief Privacy Officer, VMWare
Fred Mpala, Doctorate, MSc, CEH, CIPM, CIPP/E, Head of Diagnostics Cybersecurity,
Presenters/Panelists 12pm – 1pm:
Alea Garbagnati, JD, CIPP/US, Compliance and Global Privacy Counsel, Roche Diagnostics
Robert E. Glaser, MBA, CIPP/US, Founder and Managing Principal, Conduit Privacy
Virginia MacSuibhne, JD, CCEP (pronounced mock-swiv-na) is the Chief Compliance and Privacy Officer for Roche Diagnostics where she is responsible for managing and directing all aspects of the organization’s ethics, compliance and data privacy program and related infrastructure. In addition to expertise building and managing key ethics and compliance programs, Virginia is experienced and skilled in cybersecurity, data governance, investigative processes, employment law, and ethics and compliance risk assessment and crisis management activities.
Virginia is a frequent speaker and author on key and emerging compliance and ethics topics for the Society of Corporate Compliance and Ethics and other key national and local compliance programs. Since 2019 Virginia has been part of the inaugural faculty developing and teaching for Santa Clara University in the School of Law’s Master’s program in Compliance.
Michelle Bazu is Cybersecurity Counsel at VMware where she handles a large range of cybersecurity matters relating to incident response, source code integrity, as well as domestic and global cybersecurity policy issues. Before VMware, Michelle was Microsoft’s principal Cybersecurity Attorney for the Government Security Program, which provides international organizations with confidential security information to enhance trust in Microsoft’s products and services. Prior to Microsoft, Michelle served as a federal prosecutor both with the U.S. Attorney’s Office in the Bay Area and with the National Security Division in Washington, D.C. Michelle graduated magna cum laude from University of Michigan Law School and started her legal career over a decade ago in patent litigation at Kirkland & Ellis.
Alea Garbagnati, Esq., CIPP/US is an attorney at Roche Diagnostics, located in Pleasanton, Calif. She joined Roche in 2015, and spent a year in Roche’s Global Privacy Office in Basel, Switzerland and was the U.S. Privacy Officer for two years. Prior to Roche, Alea was a privacy consultant at Deloitte & Touche. She is an alumna of the University of California, Irvine, and Hastings College of the Law. When she’s not acting as a privacy Jedi master, Alea loves to travel, watch musicals and is an avid soccer fan.
Robert E. Glaser is the founder and managing principal of Conduit Privacy Solutions. He is a sought-after global privacy expert having served as Chief Privacy Officer in global organizations as well as having consulted to client organizations in multiple industries, e.g., Biopharmaceuticals, Medical Device, Insurance, Technology, Media, Telecommunications, Consumer Products, etc. In these roles Robert Identified and managed risks and opportunities associated with regulatory requirements specific to the collection and management of personal information. He has led and supported a variety of global/regional privacy and data protection initiatives resulting in enterprise privacy program development, execution and maturation, governance, risk modeling, remediation planning and execution, policy generation and analysis, cross border data transfer, human resources data, health data (including HIPAA Privacy and Security), consumer/health marketing and commercialization. Robert has led Privacy Incident Response planning and execution services, developed and executed Privacy & Data Protection Practice strategy, acted as global privacy subject matter expert, and recently co-led Deloitte’s efforts for the EU-US Privacy Shield Framework, EU General Data Protection Regulation (GDPR) and the California Consumer Privacy Act (CCPA). Robert routinely provides external presentations to audiences of dozens to several thousand, as well as having had individual meetings with C-Suites and Boards.
Dr. Stuart Lee joined VMware in 2018. In his role as the organization’s Chief Privacy Officer, Stuart is responsible for defining and operationalizing VMware’s global privacy strategy. He works closely with the legal team, Information Security leadership, and cross-functional stakeholders to maintain the organization’s global privacy program while considering new and emerging regulatory requirements. Prior to joining VMware, Stuart was a Specialist Leader within Deloitte & Touche’s Privacy and Data Protection Practice. During this role, he worked with Fortune 500 clients from across the Technology, Retail and Life Sciences sectors to design, build, and deploy global privacy and security programs. He has worked with client teams from across Asia, Europe and North America to understand and address local privacy-related requirements. Stuart speaks regularly on topics associated with Data Privacy, Cyber Security and Risk Management. He is a Fellow of Information Privacy (FIP) with the IAAP, and Certified Data Privacy Solutions Engineer (ISACA). Stuart completed his PhD and MPhil at the University of Cambridge.
Fred Mpala is the Head of Diagnostics Product Cybersecurity at Roche Diagnostics based in Switzerland. In his role, Fred leads the Product Cyber Security team at Roche Diagnostics, where he provides strategies, concepts, guidelines, methods and security services across the Diagnostics Division to continually improve the protection of patients, customers, business partners, assets and information on Roche products. He and his team assume a key role in the transfer of security expertise within the Division.
Prior to Roche Diagnostics, Fred worked at Standard Chartered Bank where he held the position of Global Head, Information and Cyber Security Assurance and Testing. Prior to that, he held various information and cybersecurity roles, largely in the financial sector, at NYSE Euronext, Goldman Sachs, Societe Generale Corporate and Investment Bank and Thomson Reuters. Fred is passionate about innovation, technology and embedding security culture and mindset into delivering world-class patient and customer- centric solutions, products and services. Fred has a cross discipline academic and professional educational background. He holds a Doctorate in Information Security from the University of East London, Postgraduate law with focus on Computer and Communications Law, and CIPP/E and CIPM certifications through the IAPP.
Join us February 11th 11-1pm PST for the second of our series of privacy webinars. You can join all or one hour of this two-hour panel session of experts moderated by Virginia MacSuibhne, Chief Compliance & Privacy Officer of Roche and instructor in SCU Law’s Compliance Master’s Program.
The first hour will include top industry experts Stuart Lee, Chief Privacy Officer of VMWare and Michelle Bazu, Cybersecurity Counsel from VMWare and Fred Mpala, Head of Diagnostics Product Cybersecurity at Roche talking about cybersecurity threats in organizations, vulnerability monitoring, incident management, tools and resources and keys issues and risks.
The second hour will include top industry experts Robert Glaser, founder and managing principal of Conduit Privacy Solutions and Alea Garbagnati, Compliance and Privacy Counsel at Roche, covering the overlap of privacy and security incidents / breaches, leading practices for response, implications to the business, and the plethora of notification requirements.
Santa Clara University Alumni: $145
General Public: $200
Current Santa Clara Law Student: Free
CLA Section Member: $160
California CLE Credit: Each session offered during this event qualifies for 1 hour of California continuing legal education. Santa Clara Law is a CA State Bar approved provider. CLA Sections Members: $160