Dallas
Dallas
Brian Long focuses his practice on transactional and regulatory matters, with an emphasis on cybersecurity. He counsels clients on cyber breach response; cybersecurity maturity and risk assessments under frameworks such as the National Institute of Standards and Technology (NIST) Cybersecurity Framework (CSF) and the International Organization for Standardization/International Electrotechnical Commission (ISO/IEC) 27001; compliance with NIST SP 800-171 and the Cybersecurity Maturity Model Certification (CMMC) program; artificial intelligence (AI) governance; and audit support and management.
Results
- Managed the legal aspects of a data breach response to a large ransomware attack that disrupted the global operations of a service provider offering individualized hosted environments, directed the day-to-day work of the forensic team as breach coach, drafted client-facing communications, interacted with the client’s senior leadership team, and advised the client through negotiations with its impacted customers
- Provided advice and legal project management to a government services organization on compliance with Defense Federal Acquisition Regulation Supplement (DFARS) 252.204-7012, including scoring and submission of self-assessments to the Supplier Performance Risk System (SPRS), preparation of Plans of Action and Milestones (POA&Ms), and readiness work for CMMC Level 1 and Level 2 assessments
- Led an outsourcing engagement to transition a large entity’s outsourced security department from one security provider to another, including negotiating the services scope, service levels, and other legal terms
Capabilities and industries
Regional markets
Credentials
Education
- SMU Dedman School of Law, JD, summa cum laude, Valedictorian
- The University of Texas at Dallas, BA, cum laude
Admissions
- Texas
Brian Long’s
Insights, News & Events
Insights, News & Events
