H Jacqueline (“HJ”) Brehmer is a litigation associate and a member of the Data Strategy & Security practice group. Her practice focuses on assisting companies with managing cybersecurity risks, preparing for and responding to cybersecurity incidents, and handling related internal investigations and regulatory defense. Her recent matters include managing responses to corporate data breaches, ransomware incidents, and other data security issues, as well as advising clients on managing their cybersecurity and operational resiliency risks. Ms. Brehmer also advises critical infrastructure entities on the cybersecurity risks associated with industrial control systems, public-private partnerships, and compliance with developing federal laws and regulations.
Ms. Brehmer regularly writes for the Debevoise Data Blog on a wide range of issues, including sanctions considerations, litigation and enforcement under the California Consumer Privacy Act, and the development of federal regulations for critical infrastructure. She is a co-author of “NIST Releases Most Significant Update to Cybersecurity Framework Since 2014,” NYU Compliance & Enforcement (March, 2024); “Takeaways from Proposed Changes to the NIST Cybersecurity Framework,” Harvard Forum on Corporate Governance (April, 2023); “NYDFS Proposes Significant Changes to Its Cybersecurity Rules,” NYU Compliance & Enforcement (August, 2022); “Debevoise Discusses New Cyber Incident Reporting for Critical Infrastructure,” Columbia Blue Sky Blog (March, 2022); “Four Takeaways from the SEC’s Proposed Cybersecurity Rules,” Harvard Forum on Corporate Governance (March, 2022); “CCPA Enforcement Update: California AG Announces a New Enforcement Sweep Targeting Customer Loyalty Programs” NYU Compliance & Enforcement (February, 2022); “SEC Cybersecurity Update: Chair Gensler Offers Insight into Upcoming Regulation,” NYU Compliance & Enforcement (February, 2022); “Data Privacy and Cybersecurity: Crisis Avoidance and Management Strategies,” Latin Lawyer – The Guide to Corporate Crisis Management (December, 2021) and also the author of Data Localization: The Unintended Consequences of Data Privacy Litigation, 67 Am. U. L. Rev. 927 (2018).
From 2013 to 2015, Ms. Brehmer was a member of Yahoo!, Inc.’s Information Security team, where she founded Yahoo!’s E-Crime Investigations team, conducted large-scale incident response and criminal investigations, and collaborated with industry peers to develop an information sharing platform.
Ms. Brehmer joined Debevoise in 2018. She received her J.D. magna cum laude from American University Washington College of Law in 2018 and received her B.A. from the University of Washington in 2012.
Ms. Brehmer is admitted to the bars of California and the District of Columbia, and is admitted to appear before the Eleventh Circuit Court of Appeals.