Adam I. Cohen

Counsel

New York
T +1.212.589.4629
F +1.212.589.4201

Overview

Adam Cohen has been practicing at the intersection of law and technology for more than 25 years, in a career that includes the practice of law, both as outside and in-house counsel, and technology consulting.

Adam began his career as a litigator, representing business enterprises in cases involving information technology, including intellectual property disputes focused on emerging Internet issues, lawsuits and investigations that turned on electronic discovery and digital forensics. After more than a decade, he then served in senior positions at global consulting firms, continuing to work on cases and investigations while also developing a practice in proactive advisory work for clients seeking better control over systems and data in response to regulatory compliance and other risk management imperatives.

As the convergence of law and technology intensified and cybersecurity and data privacy moved to the forefront of enterprise risk management priorities, Adam returned to practicing law, first as senior counsel with a global cloud software business prior to joining the firm. While helping clients manage the increasingly complex legal risk environment is his first priority, he continues his dedication to thought leadership and education of the next generation of lawyers, teaching law school courses at Fordham and Cardozo in New York, updating his treatise annually and serving on the advisory board of Georgetown Law School’s Cybersecurity Law Institute.

Adam has earned the Certified Information Systems Security Professional (CISSP), Certified Cloud Security Professional (CCSP) and Certified Ethical Hacker (CEH) designations. He was also inducted into the InfoSec Institute Hall of Fame in 2020,

Select Experience

  • Represented businesses in cases that included intellectual property disputes focused on emerging Internet issues, such as digital music copyright and trademark liability for online marketplace service providers, as well as lawsuits and investigations that turned on electronic discovery and digital forensics.
  • Conducted and presented assessments of corporate information security programs for financial services institutions in the banking, insurance, private equity and hedge fund sectors.
  • Served as outsourced Chief Information Security Officer and Data Protection Officer for technology businesses.
More »

Experience

  • Represented businesses in cases that included intellectual property disputes focused on emerging Internet issues, such as digital music copyright and trademark liability for online marketplace service providers, as well as lawsuits and investigations that turned on electronic discovery and digital forensics.
  • Conducted and presented assessments of corporate information security programs for financial services institutions in the banking, insurance, private equity and hedge fund sectors.
  • Served as outsourced Chief Information Security Officer and Data Protection Officer for technology businesses.
  • Developed and implemented information security and data privacy program for client consortium of major airlines, managing passenger data and travel incentive programs.
  • Advised e-commerce business in connection with FTC investigation and consent order following data breach.
  • Worked with global enterprise cloud service provider to align market approach with financial services industry cybersecurity legal and compliance risk management concerns.
  • Advised global insurance company overhauling information security program for compliance with new and emerging legal requirements.
  • Led internal cybersecurity investigation for international retail business compromised by insider.
  • Led internal investigation of intellectual property leakage for Fortune 250 client and resulting series of projects enhancing cybersecurity program.
  • Served as expert witness in defending use of machine learning technology for document review during electronic discovery dispute in federal court consumer class action.
  • Directed client initiatives for compliance with the European Union General Data Protection Regulation (GDPR).

Recognitions and Memberships

Recognitions

  • InfoSec Institute Hall of Fame: Inductee (2020)
  • (ISC)²: Certified Information Systems Security Professional (CISSP)
  • (ISC)²: Certified Cloud Security Professional (CCSP)
  • EC-Council: Certified Ethical Hacker (CEH)

Community

  • Georgetown Law
    • Cybersecurity Law Institute: Advisory Board
    • Advanced E-Discovery Institute: Advisory Board
  • Volunteer Lawyers for the Arts, New York: Board of Directors
  • Cardozo School of Law: Adjunct Faculty
  • Fordham Law School: Adjunct Faculty

Prior Positions

  • Acoustic, L.P.: Senior Counsel (2020)
  • Berkeley Research Group LLC: Managing Director (2015 to 2019)
  • EY: Principal (2011 to 2015)

Admissions

  • New York

Education

  • J.D., Duke University School of Law, 1993
  • B.A., Wesleyan University, 1990

Blog

In The Blogs

Previous Next
Data Counsel
Federal Banking Regulators Issue 36-Hour Computer-Security Incident Notification Requirement
By Shruti Bhutani Arora, Adam I. Cohen, Andreas T. Kaltsounis, Jeewon K. Serrato
December 14, 2021
As the federal government continues its whole-of-government response to cyber incidents, federal banking regulators took action to impose a new notice requirement on federally regulated banks. In November, the Federal Deposit Insurance...
Read More ->
Data Counsel
SEC Cybersecurity Actions Against Registered Firms for Business Email Compromises Emphasize Importance of MFA
By Adam I. Cohen, Jonathan A. Forman
September 14, 2021
On August 30, 2021, the Securities and Exchange Commission (“SEC”) announced three settled orders against several investment advisers, broker-dealers, and dual registrants for violations of Regulation S-P allegedly resulting from business...
Read More ->
Data Counsel
Pairing Real-World™ Problems with Realistic Solutions – a Push for Practical Information Governance
By Adam I. Cohen, James A. Sherer
June 18, 2021
For those attorneys and information governance practitioners unfamiliar with recent pedagogic advancements, “real-world problem solving” moves teaching approaches away from the classical model that assumes individuals will operate...
Read More ->
Data Counsel
A Risk-Based Approach to the SolarWinds Vulnerability Disclosures
By Adam I. Cohen, Andreas T. Kaltsounis
January 6, 2021
On December 13, 2020, SolarWinds disclosed that an unknown attacker compromised its network and inserted malicious code (referred to as the Sunburst vulnerability) into software updates for the Orion platform. In what will likely become...
Read More ->
Data Counsel
The New IoT Cybersecurity Act Is Here
By Adam I. Cohen
December 11, 2020
Background Growing awareness regarding cybersecurity concerns with the Internet of Things (IoT) has achieved a milestone with the promulgation of the IoT Cybersecurity Improvement Act (the Act), which was signed into law by President...
Read More ->