This website uses cookies to store information on your computer. Some of these cookies are used for visitor analysis, others are essential to making our site function properly and improve the user experience. By using this site, you consent to the placement of these cookies. Click Accept to consent and dismiss this message or Deny to leave this website. Read our Privacy Statement for more.
Contact Us   |   Print Page   |   Sign In   |   Join Now
August 2018 ISSA Web Conference

ISSA International Series: Regulation and Legislation

Recorded (1 Hour Event) on Wednesday, August 22, 2018

Click here to view the recording.
Click here for the presentation.
Click here to take the CPE quiz.


We all realize that our security jobs are much more than just specifying technology and controls, protecting and defending our infrastructure, and investigating incidents. Over the last year privacy has been mainstreamed with GDPR going into effect, California passed its own version of GDPR, and with 40 + privacy laws in the US, and more just over the horizon. In addition, some of the questions around cloud and privacy have been addressed with the Cloud Act (which gives government agencies direct access to consumer information in the cloud). We also see more government export controls looming on the horizon. These controls will impact cyber tools and techniques and our ability to test and mitigate vulnerabilities while complying with laws and regulations.

While we may not have all the answers, we will review the current state of our world. To do this, we will bring in legislative and regulatory experts to discuss the changes and some of the directions we see looming.

Some of the questions we will try to address are:

what happens when these laws and regulations conflict with one another
what happens when these controls impact our ability to do our job
can we mitigate any of our liability by just getting insurance.



Michael F. Angelo, Chief Security Architect, Micro Focus | NetIQ

Michael F. Angelo CRISC, CISSP has over 30 years of information assurance experience. Michael has served as a trusted security advisor and security architect with leading corporations and government entities. He has acted as a technical adviser in the development of US national and international export controls. Currently chairs the ISSA International Webinar committee. Amongst his accomplishments he is an ISSA Fellow, and is named on the ISSA Hall of FAME for his contributions to the security community. In addition, he currently holds 61 US Granted Patents. His current work encompasses certifications, SDL, Threat Modeling, AppSec / DevOPS, as well as and Software Supply Chain analysis. Michael is a veteran moderator and has appeared at numerous International conference and in a multitude of International Web Conferences.


Lisa Angelo, Attorney, Cyber Law & Insurance

Lisa Angelo is currently on the council for the State Bar of Texas Computer & Technology Section, is the Vice-Chair of the State Bar of Texas Business Law Section’s General Practice Committee, is a member of the Blockchain Committee, and is a member of the FBI’s InfraGard Houston Chapter. Lisa earned her JD from South Texas College of Law and a bachelor’s in psychology from The University of Texas at Austin. Lisa is licensed to practice law in Texas and Colorado. She is a Certified Information Privacy Manager and advises businesses on data privacy, cyber risk management, cyber liability, and cyber insurance.


Randy V. Sabett, J.D., CISSP, Special Counsel, Cooley LLP

Mr. Sabett is a former NSA crypto engineer, whose practice focuses on cybersecurity, privacy, licensing, and IP, dealing with such issues as risk assessment, corporate liability for privacy and data security, identity management, EU data privacy issues, active defense, electronic signatures, state and federal information security laws, and security breaches. Mr. Sabett has managed numerous data breach responses, involving major retailers, financial and health care organizations, and on-line service providers. He served on the Commission on Cybersecurity for the 44th Presidency and has been recognized as a leader in Privacy and Data Security in the 2007-2018 editions of Chambers USA. Mr. Sabett is a member of the Boards of Directors for the Georgetown Cybersecurity Law Institute, a frequent lecturer and author, and has appeared on or been quoted in a variety of national media sources.


Maher Shomali, Partner, Thomsen & Burke LLP

Maher Shomali is a partner at Thomsen & Burke LLP, an international trade and investment firm based in Baltimore, Maryland. His practice focuses on representing information technology companies in regulatory, legislative and enforcement matters. Maher works closely with U.S. and foreign companies to ensure their compliance with the encryption controls administered by the U.S. Department of Commerce’s Bureau of Industry and Security. Maher also leads the Firm’s Global Cryptography practice and assists companies’ filings of authorizations to export, import, use and supply encryption products with foreign governments, including France’s National Security Agency for Information Systems, Israel’s Ministry of Defense and Russia’s Federal Security Service.

Maher joined Thomsen & Burke as an Associate in 2007. He received a B.B.A. from Loyola University Maryland and a J.D. from the University of Baltimore School of Law. Admitted to practice in Maryland in 2006 and Washington D.C. in 2014, Maher is a member of the Maryland and American Bar Associations and is a fluent Arabic speaker.

 Wes Demory, Attorney, Thomsen & Burke, LLP


Wes Demory is an attorney at Thomsen & Burke LLP and practices in U.S. export controls and international trade, representing technology-oriented companies. Prior to pursuing a career in law, Wes worked as an engineer for a Fortune 500 company and in product management for a start-up software company.


Community Search
Sign In


ISSA International Series: Legislative Aspects

ISSA Thought Leadership Series: Update on the latest cyber threats and trends

ISSA OC 34th Annual Symposium

InfoSec Nashville

ISSA International Series: New Trends in Security- Outsourcing and Other Tech

Copyright © 2016, Information Systems Security Association, All Rights Reserved
Privacy PolicyCopyright Information