Steven W. Teppler, CDPSE is a Partner and Chair of the Firm’s Privacy and Cybersecurity practice group, as well as our Chief Cybersecurity Legal Officer. Steven focuses his practice on pro-active, preventive and remedial cybersecurity and privacy work for clients, as well as advising on potential class action and mass tort liability arising from security vulnerabilities and code defects in technology-enabled devices and services.

Steven is an ISACA Certified Data Privacy Solutions Engineer (CDPSE), who has been at the forefront of cybersecurity, data privacy and eDiscovery matters since 2000, and has extensive technology, blockchain and class action litigation experience. He also has deep hands-on experience stemming from his work to secure six cryptography patents, and his role leading a content authentication technology startup.

Steven is a leader in the field of data privacy and cybersecurity, who publishes the blog Litigation Intelligence, and teaches Electronic Discovery and Cybersecurity Law at Nova Southeastern University’s Shepard Broad College of Law.

Steven’s professional affiliations include: Co-chair of the American Bar Association Information Security Committee; founding past co-chair of the ABA’s Internet of Things Committee (2015-2017); founding past chair of the ABA’s Electronic Discovery and Digital Evidence Committee (2008-2015); past chair and founding member of the Florida Bar’s eDiscovery and Digital Evidence Committee, which provided substantial drafting input to the 2012 electronic discovery amendments to the Florida Rules of Civil Procedure; and past chair and current member of the Standing Committee on Professional Ethics of the Florida Bar.

Steven’s publications include:

  • “The Expanding Universe of Attorney Cyber Liability,” New Jersey Law Journal, November 2024.
  • “Navigating Cybersecurity Challenges in the Lending Industry,” co-authored by Richard Simon and Steven Teppler, The Secured Lender, September 2024.
  • “The Two Faces of Innovation: From Safe and Dumb to Vulnerable Smart Products and Infrastructure,” ISSA Journal, February 2018.
  • “A Practitioner’s Guide to Electronic Discovery Under the Florida Rules of Civil Procedure” (contributor) Florida Business Litigation Manual, 9th Edition, 2017.
  • “Testable Reliability: A Modernized Approach to Digital Evidence Admissibility,” 12 Ave Maria L. Rev. 213, Fall 2014.
  • “A Practitioner’s Guide to Electronic Discovery Under the Florida Rules of Civil Procedure,” Florida Business Litigation Manual, 8th Edition, Spring 2014.
  • “Digital Evidence Life-Cycle Management: An Information Governance Approach to Information Security and Privacy: A Practical Guide for Global Executives, Lawyers, and Technologists,” (co-author) American Bar Association, February 2011.
  • Foundations of Digital Evidence, Contributor, American Bar Association: 2008.
  • “Life After Sarbanes-Oxley, The Merger of Information
  • “Security and Accountability,” 45 Jurimetrics J. 379 American Bar Association/Arizona State University College of Law, September 2005.
  • ANSI Trusted Timestamping Standard, co-author, American National Standards Institute: 2005.
  • PKI Assessment Guidelines, (contributor) American Bar Association: 2001.
  • Information Security Legal Manual, (contributor) “Information Security and the Law,” American Bar Association: 2004.

  • New York
  • New Jersey
  • District of Columbia
  • Illinois
  • Florida

  • Benjamin N. Cardozo School of Law, J.D., 1980
  • The City College of New York, B.A., 1977

New York Newsletter: Winter Edition

December 16, 2024

Check out our NYC Newsletter to read about our recent successes, important legal updates, and how our team is closing out the year. 🗽📖 Read it Here.

The Growing Challenge of Cybersecurity in Law Firms

December 2, 2024

Lawyers have ethical and legal responsibilities under rules like New Jersey’s RPC to safeguard client and third-party data. A failure to do so can result in malpractice claims, regulatory penalties, and reputational damage. Firms must also navigate a complex patchwork of regulations, including HIPAA and data breach notification laws.

The CISO as a Chess Piece: A Comprehensive Strategic Analysis

October 11, 2024

The game of chess is complex, and so is the role of the CISO. By recognizing the strategic importance of the CISO and providing the necessary support, organizations can ensure that their CISOs are well-equipped to navigate the complexities of the cybersecurity landscape. In doing so, CISOs and by extension, the enterprise, can identify and manage risks more effectively, protect their organizations from emerging threats, and enhance organizational resilience.

Cybersecurity / Fiduciary Seminar

July 1, 2024

Learn from industry professionals about protecting retirement accounts from cyber threats and understanding fiduciary responsibilities under ERISA. This seminar is for plan sponsors, wealth advisors, accountants, and financial professionals focused on enhancing security and compliance in their organizations. Some of the topics are: Overview of Cyber Threats in the Digital Age, Fiduciary Duties under ERISA, Legal Implications of Cyberattacks on Retirement Plans, Trends in Ransomware, Participants Responsible and Best Practices, Cyber Insurance and its Importance & Future Directions and Beyond DOL Guidelines.

NYC Newsletter

May 17, 2024

the latest updates from Mandelbaum Barrett PC, straight from the vibrant streets of New York City. As we mark the midpoint of the year, our firm is excited to share significant milestones and achievements. From navigating complex legal landscapes to celebrating noteworthy victories, we're dedicated to delivering exceptional service to our clients. Join us on this journey as we reflect on our progress and look forward to what lies ahead.

Navigating the New Cybersecurity Terrain: Implications of the FCC’s Latest Rule on Security Breach Notifications

February 13, 2024

Introduction: On February 12, 2024, the Federal Communications Commission (FCC) finalized a critical cybersecurity rule, Sec. 64.2011, mandating telecommunications carriers and TRS (Telecommunications Relay Services) providers to adhere to strict guidelines concerning the notification of security breaches. This rule signifies a pivotal shift in the regulatory landscape, imposing new compliance obligations that will fundamentally alter […]

Safeguarding Client Information: 5 Essential Cybersecurity and Privacy Measures for Veterinary Practices

September 7, 2023

In an era where technology permeates every aspect of business, ensuring the confidentiality and security of client data has become a paramount concern for veterinary practices. The digital age has brought with it numerous benefits, but it has also opened the doors to new threats and vulnerabilities. Just as you diligently care for animals, it’s […]

The Next Deepfake Could Come from Your Client: The Impending Threat of Deepfakes in the Legal Profession

August 30, 2023

Lawyers are not immune to the rapidly evolving landscape of technological advancements. Deepfake technology, which involves the use of artificial intelligence to manipulate audio and video content, presents a significant and emerging threat to the legal sector. Lawyers must be vigilant and prepared to address the potential misuse of deepfakes by clients or adversary counsel, […]

Your Veterinary Practice Has Been Breached – Now What?

June 28, 2023

Preventing (and Responding to) Data Breaches: What Veterinary Practices Need to Know Technology continues to revolutionize various industries, and the veterinary field is no exception. With the integration of digital systems, electronic health records, and online communication, veterinary practices have become vulnerable to cyber threats. The importance of cybersecurity in veterinary practices cannot be overstated. […]

Why Companies Need a Cybersecurity Attorney

February 19, 2023

The Role of Cybersecurity Counsel As companies become more reliant on technology, the need for effective cybersecurity measures is greater than ever before. One critical component of any comprehensive cybersecurity strategy is the role of cybersecurity attorneys. Let’s take a look at the vital role of cybersecurity attorneys and the benefits they provide. What is […]

Cybersecurity Alert: Class Action Liability Risks for Violations of ADA and New York Human Rights Laws

July 6, 2018

Check out our latest Cybersecurity Law Alert published by Steven Teppler and Lauren X. Topelsohn on ADA Compliance for websites and the recent uptick in class action lawsuits for violations of ADA and New York Human Rights Law in light of the Federal Government's Web Content Accessibility Guidelines.

Cybersecurity Alert: Brand Name Spoofing Still a Popular Phishing Tactic

June 26, 2018

Check out our latest Cybersecurity Alert about Brand Name Spoofing, a popular phishing tactic that can put you and your company at risk. The Firm's Privacy & Cybersecurity Practice led by Of Counsel Steven Teppler, who co-authored the Alert with Member Lauren X. Topelsohn, helps business owners to prevent and mitigate damages from cyber attacks.

Threats and Risk Insights: Navigating Cybersecurity Challenges in the Lending Industry

November 1, 2024

Richard Simon, Shareholder and Co-Chair of the Firm’s Banking and Financial Services Practice Group and Steven Teppler, Partner and Chief Cybersecurity Legal Officer, share their expert insights in The Secured Lender on 'Navigating Cybersecurity Challenges in the Lending Industry.'

Deal Alert: Jacqueline Greenberg Vogt & Steven W. Teppler Achieve Amazing Victory for Contractor Defrauded of Cryptocurrency

May 3, 2024

Jacqueline Greenberg Vogt, Chair of the Construction Law Group and Steven W. Teppler Partner and Chair of the Privacy and Cybersecurity Practice Group at Mandelbaum Barrett PC, recently achieved an amazing victory for a contractor client who was the victim of theft of his cryptocurrency.

Massive Data Breach at HCA Healthcare Sparks Class-Action Lawsuits and Regulatory Concerns

July 17, 2023

A massive data breach at HCA Healthcare, a hospital chain, has resulted in the filing of the first of many proposed class-action lawsuits. The breach involved the exposure of potentially 11 million patients’ information on a dark web forum. Key concerns surrounding the breach include the possible involvement of a third-party storage vendor and the […]

Steven W. Teppler, Chair of Privacy and Cybersecurity and Chief Cybersecurity Legal Officer, featured in article titled “Health Entities Should Vet Risks of ChatGPT Use”

January 20, 2023

Steven W. Teppler, Partner and Chair of the Firm’s Privacy and Cybersecurity practice group, as well as our Chief Cybersecurity Legal Officer, was featured in an article discussing the importance of healthcare entities carefully vetting the use of ChatGPT and similar AI-enabled tools for potential patient data security and privacy risks. Click the link to […]

Steven Teppler and Lauren X. Topelsohn Discuss the Legal and Ethic Requirements Imposed by the SHIELD Act in the New York Law Journal

October 10, 2022

The SHIELD (Stop Hacks and Improve Electronic Data Security) Act is the latest cybersecurity-based legislation, affecting businesses (including law firms) that own or license computerized private information of New York residents. Designed to protect state residents’ data, this act imposes strict requirements on firms and levies harsh fines for those that fail to meet them. […]

Steven Teppler, Chair of Privacy and Cybersecurity, featured in article titled “Hazards and Help with Cybersecurity”

October 4, 2022

Steven W. Teppler, of counsel and chair of the firm’s Privacy and Cybersecurity practice group, was featured in the New Jersey Business Magazine for October, where he highlights the importance of cybersecurity and data breach prevention/response. Since October is Cybersecurity Awareness Month, this could not have happened at a better time. This month is dedicated to raise […]

Steven Teppler to present webinar titled "The vCISO Engagement and Legal Liability – What You Need to Know"

February 15, 2022

Mandelbaum Barrett PC Of Counsel Steven Teppler will be the Keynote speaker for a "vCISO Engagement and Legal Liability - What You Need to Know" webinar powered by the vCISO News professional community on Wednesday, February 16th, 2022 from 10:30am to 12:00pm.