Jim is a principal in KPMG LLP’s Cyber Services group and helps lead KPMG’s Cyber Response practice and the Cyber Insurance Channel. Jim has over 30 years of practical business and legal experience, including over 20 years of private practice, in-house legal, forensic, and cyber consulting experience.

Jim has in-depth experience providing and/or supporting:

• Reactive assistance leading global cyber breach investigations including ransomware, business email compromise, intellectual property theft and other date exfiltration matters.
• Coordinating cyber breach investigations with clients, cyber insurance carriers, breach coaches and PR firms.
• Proactive assessment, design, and implementation of cyber due diligence activities and data privacy, data identification, and remediation programs and controls.
• Project management of cyber response investigation, cyber due diligence, computer forensic, neutral and expert witness, data privacy, data identification and remediation, and eDiscovery matters.

Carolyn Ryan is the co-chair of the Cybersecurity, Information Privacy and Data Security Team. Clients in the healthcare sector and other industries have become concerned about cybersecurity and privacy issues, breach preparedness and response. Ms. Ryan counsels clients on development of risk assessment policies, vendor agreement analysis and implementation of data privacy practices. She also aids clients in incident response planning, including table top exercises, assessment of regulatory compliance requirements and inquiries from regulators on both the state and federal levels, and represents clients in litigation focusing on data breaches and data security, information technology, technology failures, implementation of developed software, cloud computing related issues, and IT outsourcing agreements. Ms. Ryan is an active member of the American Bar Association, Defense Research Institute and the American Health Lawyers Association.

Kate is a senior associate on Alston & Bird’s Technology & Privacy and Cybersecurity Preparedness & Response teams. She focuses her practice on cybersecurity and privacy compliance and enforcement. Kate has provided advice on a range of cybersecurity topics, including compliance with various cybersecurity standards, managing cyber risk at all levels of the enterprise, cybersecurity governance, and responding appropriately to security incidents. She also actively monitors cybersecurity-related legislative and regulatory developments at the state and federal levels to provide advice on potential impacts.