https://www.linkedin.com/in/elimukajunju/

https://www.linkedin.com/in/jo...

Sarah serves as a vice chair of the Constangy Cyber Team and practices in New York. She leads the provision of compliance advisory services for the Cyber Team, advising clients on strategies to mitigate risk associated with data privacy and security through business-oriented approaches. Sarah has more than 15 years of experience working in the privacy law area. She is a former privacy officer, a former state regulator, and has extensive experience serving as outside counsel for businesses in the fields of health law, data privacy, regulatory compliance, and risk management.

Sarah helps clients to develop and implement customized privacy programs, data privacy assessments, executive trainings, and tabletop exercises. Sarah also works with clients on strategies to mitigate risks posed by vendor relationships through improved vendor management programs, contracting protocols, and vendor oversight. Additionally, she helps clients to anticipate and effectively respond to potential threats, and assists businesses throughout all phases of information security incidents.

A former Assistant General Counsel with the Vermont Department of Financial Regulation, Sarah regularly interfaces with state and federal agencies in response to investigations, enforcement actions and compliance audits. In addition, she worked as a Program and Policy Advisor for the United States Agency for International Development in New Delhi, India, where she provided guidance on health and gender programs. Sarah holds the Certified Information Privacy Professional for European law (CIPP/E) credential.

Kathy Rizzo is the Acting Deputy Chief Counsel for Infrastructure Security and Regulatory Programs within the Office of the Chief Counsel at the Cybersecurity and Infrastructure Security Agency (CISA), the newest component agency of the U.S. Department of Homeland Security. Kathy advises the agency on a wide range of legal issues related to the implementation of the CISA’s infrastructure security mission and the development and operation of CISA’s regulatory programs, including the Chemical Facility Anti-Terrorism Standards Program, the Protected Critical Infrastructure Information Program, and the forthcoming Cyber Incident Reporting for Critical Infrastructure Act of 2022 regulations. Prior to joining CISA, Kathy served in the Office of the Principal Legal Advisor for U.S. Immigration and Customs Enforcement, where she also worked on the promulgation, implementation, and defense of federal regulations. Kathy earned her J.D., M.A., and B.A. from American University and holds a CIPP/US certification.