NJSBA 2025 Cybersecurity Institute: From Breach to Boardroom

Tuition Rates:

– Members: $203
– Non-Members: $254

The Essential Annual Update Every Attorney Needs to Protect Their Firm, Their Reputation, and Their Clients’ Futures

Your clients trust you with their most sensitive information. One breach could destroy that trust – and your practice. In five fast-paced hours, the tri-state area’s leading cybersecurity and data privacy authorities will arm you with practical, battle-tested strategies to transform your firm from vulnerable target to fortified practice. You’ll leave with tools you’ll implement Monday morning, contracts you’ll revise that afternoon, and the confidence to guide clients through their darkest digital hours.

This isn’t theory. This is survival.

9:00 | Opening Keynote Part 1

The First 60 Minutes: Inside a Live Ransomware Attack – Karen Painter Randall, Esq.

The Brutal Reality of Modern Cyber Attacks:

• Minute-by-minute breakdown of what actually happens – in the attack and in the boardroom
• The new ransomware playbook: Why paying doesn’t mean it’s over
• Practical examples: Real-world scenarios from recent incidents
• The four decisions you must make in the first hour – and the three that can destroy you

What You’ll Take Away:

• Your firm’s 60-minute incident response checklist
• The “breach communication tree” template that saves reputations
• Exactly what to tell clients, employees, and media (scripts included)

9:30 | Opening Keynote Part 2

The Privacy Nightmare That Follows: When the Breach Is Just the Beginning – Rebecca L. Rakoski, Esq.

After the Ransom: The Hidden Privacy Catastrophe:

• The 180-day danger zone: Why privacy violations multiply after “resolved” breaches
• Case study: How a “contained” breach led to millions in privacy penalties
• The litigation timeline: When class actions hit and how plaintiffs build their cases
• Dark web reality: What happens to compromised data after an attack

What You’ll Take Away:

• Post-breach privacy audit checklist
• Template notices that actually meet regulatory requirements
• The “privacy kill chain” – how to break it before regulators arrive

10:00 | Panel Session

Threat Landscape 2025: The Attacks Coming for You and Your Clients

Moderator: Karen Painter Randall, Esq.
Panelists: Laks Kattalai; Jessica Lewis Kelly, Esq.; Karen Painter Randall, Esq. and Rebecca L. Rakoski, Esq.

This two-hour deep dive brings together the state’s foremost cybersecurity and privacy experts to examine the current threat environment and what’s coming next. The panel will explore real-world attack scenarios currently targeting law firms and businesses in the tri-state area, including ransomware-as-a-service operations, supply chain compromises, and AI-enhanced social engineering. You’ll learn how the New Jersey Judiciary defends against millions of daily attack attempts, understand the legal implications of recent enforcement actions, and discover practical strategies for building resilience in your practice. Through interactive demonstrations and case studies, the panel will provide actionable intelligence you can use immediately to identify and close vulnerabilities in your firm’s defenses.

12:00 | Break

12:15 | Legislative and Regulatory Update

The Rules Changing Everything in 2025, and What to Expect in 2026 and Beyond        

Navigate the rapidly evolving compliance landscape with this comprehensive update on federal and state regulations reshaping cybersecurity and privacy obligations. Learn about the SEC’s new materiality disclosure requirements, understand the practical implications of the FTC’s enhanced safeguards rule, and prepare for the wave of state privacy laws taking effect in 2025. This session will decode the complex interplay between emerging AI regulations, cross-border data transfer requirements, and traditional data protection frameworks. Special attention will be given to New Jersey’s pending legislation and multi-state enforcement trends that are creating new liability exposures for law firms and their clients.

1:00  | Practical Implementation Workshop

Monday Morning Action Plan: What You Can Do THIS WEEK

Moderator: Rebecca L. Rakoski, Esq.
Presenters: Laks Kattalai; Jessica Lewis Kelly, Esq. and Karen Painter Randall, Esq.

This intensive final hour delivers a rapid-fire round of immediately actionable tips, strategies, and solutions drawn from the panelists’ collective decades of experience. No slides, no theory – just practical wisdom you can implement starting Monday morning. The panel will share their most effective cybersecurity quick wins, including the five-minute email authentication fix that blocks 90% of phishing attempts, the MFA configuration that actually works, and the backup testing protocol that has saved dozens of firms from ransomware disasters. You’ll learn the privacy fixes that prevent regulatory scrutiny, from finding forgotten data repositories to implementing retention schedules that actually work, updating privacy notices to avoid litigation, and adding the three contract clauses that transfer critical vendor risk. The session will cover everything from wire transfer protocols that stop the number one source of law firm losses to incident response shortcuts that save precious hours during a crisis. Each panelist will contribute their top strategies for immediate implementation, regardless of firm size or technical expertise, creating a comprehensive playbook of practical solutions. By the end of this packed hour, you’ll have a prioritized action list of security improvements, privacy enhancements, and risk management strategies that can be deployed immediately without significant cost or disruption to your practice.

2:00 | Adjourn

CLE CREDITS:

I109125

Important Information About Our Events, Meetings, and More:
To secure your spot and receive important updates about our events, meetings, and other gatherings, such as schedule changes, remember to register in advance.

Digital Materials & Environmental Commitment: As part of our commitment to environmental sustainability, unless otherwise noted, all seminar materials are provided as digital downloads. You can access these materials through:

• The “My Links” section at the top of our website for in-person or online events
• Or, for online programs, the event access link included in your joining instructions

Cancellation and Refund Policy:
If you need to cancel your registration and are not transferring to another program or date, please submit a written request to us at least three business days before the event, meeting, or gathering. You will receive a refund minus a $20.00 cancellation fee. No refunds or registration changes will be issued within three business days of the event, meeting, or gathering.

Stay Informed:
Registered participants will be notified of any schedule changes. For updates regarding inclement weather, please check your email or visit NJSBA.com.

Media Consent:
By participating in our events, meetings, or other gatherings, you agree to be photographed and/or recorded. Additionally, all media content captured during these gatherings will become the property of NJSBA. This content, including your image and name, may be used in our future promotional materials without additional consent or compensation.

Scholarship & Financial Assistance Policy:
Read our Scholarship & Financial Assistance Policy and submit an Application here: https://njsba.com/njicle/cle-programs/scholarship/