Jeremy spent nearly a decade in Washington DC as a cybersecurity engineer and consultant helping federal agencies comply with security frameworks such as NIST 800-53. In the private sector, he participated in incident response, red and blue team testing, and other compliance work for finance and energy sector clients.

For the last decade, he served as the Associate Director Information Security for the Engineering and GRC Security teams at Baker McKenzie.  In his role there, he negotiated cybersecurity terms and conditions with clients and vendors, assisted with ongoing policy development, helped create incident response standards and procedures, completed third-party vendor risk assessments, assisted with ISO 27001 compliance and client audits, and responded to client inquiries regarding the Firm’s cybersecurity posture.

Experience

• 5+ years of transactional security experience, including negotiating cybersecurity terms with clients.
• Experience with cybersecurity standards, frameworks, risk assessments, and certification processes, e.g., SOC 1, 2, 3, ISO/IEC 27001, 27001, 27005, NYDFS, and the NIST Cybersecurity Framework.
• Over two decades of operational cybersecurity experience, including leading red and blue team assessments for classified government agencies and private sector clients.
• The ability to build trust and align incentives with stakeholders by distilling complex legal issues into clear and concise guidance, and using creative problem-solving to find practical solutions to challenges.
• active and in good standing in the Illinois State Bar.
• CISSP
• CISA

Education

• LL.M. National Security & Cybersecurity Law | George Washington University Law School (2021)
• J.D. | University of Houston (2016)