Photo of Veronica R. Glick

Veronica Glick is a partner in Mayer Brown’s Washington, DC office and a member of the firm’s National Security and Cybersecurity & Data Privacy practices. She is also a member of the firm’s Litigation & Dispute Resolution practice and Congressional Investigations & Crisis Management team. Veronica focuses her practice on complex and cutting-edge legal issues regarding national security, cybersecurity and international law, with particular experience responding to multijurisdictional cyber incidents.

Read Veronica's full bio.

Recently, world leaders and key stakeholders gathered for the 78th session of the United Nations General Assembly (“UNGA”) to discuss global challenges with the goal of furthering peace, security, and sustainable development. A key topic of discussion was the “digital revolution,” focusing on the opportunities and challenges presented by artificial intelligence (“AI”), as well as

On March 9, 2023, the Securities and Exchange Commission (“SEC”) announced that Blackbaud Inc. (“Blackbaud”) agreed to pay $3 million to settle charges for alleged misleading disclosures about its 2020 ransomware attack and for alleged disclosure control failures.1

Blackbaud, a South Carolina-based company that provides data management software to colleges, universities, and non-profit organizations,

The Biden administration released its National Cybersecurity Strategy (“Strategy”) on March 2, 2023.1 The Strategy builds on previous policy actions by the Biden administration that sought to strengthen cybersecurity in critical infrastructure and protect personal data, including through regulatory action, government procurement requirements, and an emphasis on software security. The Strategy calls for (1)

On October 7, 2022, President Biden signed an Executive Order on Enhancing Safeguards for United States Signals Intelligence Activities,1 which is intended to implement U.S. commitments under the Trans-Atlantic Data Privacy Framework (DPF) announced in March 2022. With the new executive order, the Biden administration aims to strengthen the legal foundation for trans-Atlantic

Strengthening the nation’s cybersecurity has been a top priority for the Biden administration, as reflected in its collaboration with industry, regulatory actions, and the legislation it has supported in Congress, including the Cyber Incident Reporting for Critical Infrastructure Act of 2022. Executive action has been a key tool in the Biden administration’s cyber policymaking toolkit.

After months of diplomatic engagement, the early morning of February 24, 2022 saw what President Biden called an “unprovoked and unjustified attack by Russian military forces” on Ukraine. Numerous news reports also have described significant cyber attacks against Ukrainian systems. According to those reports, these attacks follow multiple waves of cyber attacks in the past

What are the key priorities for businesses as they face cyber threats to industrial systems, including in manufacturing, infrastructure and other critical contexts? This panel, featuring in-house leaders from prominent multinational businesses, will address the practical tools used to manage industrial cyber risk and associated legal risk, including:

  • Assessing industrial cyber risk
  • Ensuring effective internal

Cyberattacks present substantial threats to US critical infrastructure. Recent attacks on water systems and the pipeline shutdown highlight the potentially significant legal, financial and reputational risks for businesses. The legal and policy landscape is also shifting rapidly. Companies operating in critical infrastructure sectors such as energy, chemicals, manufacturing, transportation and financial services consequently will benefit

On July 28, 2021, President Biden signed a national security memorandum that seeks to “significantly improve” the cybersecurity of critical infrastructure systems. The “National Security Memorandum on Improving Cybersecurity for Critical Infrastructure Control Systems” (the “Memorandum”) reflects the administration’s conclusion that “[t]he cybersecurity threats posed to the systems that control and operate the critical infrastructure

Recent events have left no doubt: Cyberattacks present a substantial threat to critical infrastructure and other industrial systems. Companies operating in the energy, chemicals, transportation, manufacturing, infrastructure and other relevant sectors should understand and respond to these threats.