This course focuses on the legal and risk management issues that arise after a cybersecurity breach. Students will learn about different aspects on incident response, including initial internal communications and related corporate governance issues, the role played by in-house and outside counsel, forensics experts, IT staff and others in investigating the source and scope of the breach, and in mitigation and remediation of cyber breaches. The course will cover myriad issues related to cyber-insurance (before and after a breach), the preservation of digital data and physical documents, attorney-client privilege and a number of legal issues that can arise when coordinating with federal, state, and foreign regulators and criminal investigation agencies. Students will also learn about various mitigation best practices, including disclosure to regulators, customers, cyber-insurance carriers, investors, and vendors and other affected third parties.