The Law Offices of Mary N. Chaney, P.L.L.C.
The Cyber Security Law Firm of Texas

Mary's Blog

The Breach Whisperer

About Mary....

Mary N. Chaney, Esq., CISSP® is a former Special Agent for the FBI where she investigated cybercrime, a seasoned corporate executive that built and operated information security teams and now a cybersecurity attorney.

As a self-described “Breach Whisperer” our firm can train your company to properly prepare for your eventual breach!

The overall goal of our firm is to use our wealth of knowledge and expertise to help support, translate and advise, Boards of Directors, CIO's, CISO's and General Counsel's on how to legally protect their company from cyber related risk.

Blog Entries


California Judge Wants To Get Educated On Cyber Security!

See Article Here

At least one judge wants to understand why and how breaches happen! U.S. District Judge William Alsup of the Northern District of California, “has asked for a tutorial in the Facebook cases in his San Francisco courtroom on Jan. 9 of next year.” Specially Alsup wants to know “how encryption technology works, how the industry protects databases of personal information, and how hackers are generally able to circumvent these protections and perform such widespread damage.”

As Judge Alsup’s knowledge curve goes up, the less likely companies that really don’t do a good job at privacy and cyber security, will be able to go into his courtroom and argue that doing even the bare minimum was the best it could do. This is why I find my chosen profession, in cyber security law, so fascinating. I have been speaking geek speak and legalise for well over 20 years now and working as long as I did in security operations, ranting and raving as I am prone to do, I knew many security programs and decisions should not pass the legal sniff test.

As judges start to become more knowledgeable and case law and precedent, instead of obscure technical jargon, start to rule cyber security and privacy law maybe, just maybe, the needle will move on companies actually doing something that protects information!

Instead of telling us how hard it is and how they can’t secure everything, companies will actually start doing more. Unfortunately, in our country lawsuits seem to be the only way changes will happen.