DATA PRIVACY, SECURITY & AI TRACK: Cyberattack Aftermath – How to Recover Your Data and Restore Control Over Your Systems

Keith Swiat

Managing Director, Cybersecurity, FTI Consulting, Inc.

Keith Swiat, Managing Director, Cybersecurity at FTI Consulting, Inc., is a cybersecurity leader with nearly three decades of experience advising private equity firms, financial services organizations, and portfolio companies on cybersecurity strategy, risk management, and resilience. He has led cyber diligence, incident response, and security program transformation efforts that help organizations protect sensitive financial data, strengthen transaction platform security, and manage cyber risk across the investment lifecycle. Mr. Swiat is known for translating complex technical threats into clear business and risk insights for executives, investors, and boards.

Michael Egan

Partner, Cooley LLP

Michael Egan is a partner at Cooley LLP specializing in cyber, data privacy, and security matters across technology, retail, life sciences, manufacturing, financial services, and healthcare sectors. Since 2007, he has advised clients on global privacy and data protection, data security incidents, IT compliance, and restrictions on data collection and transfer. Egan regularly represents companies before regulators, including the Federal Trade Commission, Department of Justice, and Securities and Exchange Commission, as well as international data protection authorities. His practice focuses on helping organizations navigate the evolving U.S. and global privacy and security regulatory landscape, including breach preparedness and response, cross-border data flows, consumer protection, marketing and cookies, e-monitoring, eDiscovery, outsourcing, and social media compliance.

John Levonick

General Counsel, MAXEX, LLC

John Levonick is a consumer finance attorney and capital markets strategist operating at the intersection of mortgage liquidity, structured finance, and financial technology, and currently serves in a leadership role at MAXEX, LLC, a digital mortgage exchange transforming how residential whole loans are priced, traded, and distributed across institutional investors. His work focuses on advancing secondary market liquidity through electronified loan trading, standardized data frameworks, and technology-enabled execution infrastructure that connects originators directly to capital markets. With prior experience serving as CEO, GC, and CCO, Levonick brings an operational and legal perspective to the modernization of mortgage finance. He has extensive experience structuring loan acquisition platforms, negotiating complex forward flow and securitization arrangements, and designing governance frameworks that align originator manufacturing practices with investor risk tolerance. His work sits at the forefront of mortgage market evolution — including the electronification of whole-loan trading, AI-driven loan data validation, and the development of tokenization and digital-asset rails to enable real-time mortgage finance. He advises on how standardized data, automated due diligence, and digital infrastructure can increase market transparency, execution speed, and investor confidence across the residential credit ecosystem. A nationally recognized speaker on mortgage capital markets, securitization, emerging technology, cybersecurity, and regulatory risk, he regularly addresses how innovation is reshaping liquidity, pricing, and institutional participation in housing finance.

Amy Worley

Head, Global Information Compliance Advisory & DPO, BRG

Amy R. Worley is a nationally recognized expert in privacy and information security with over two decades of experience advising multinational organizations on data protection, cybersecurity, and regulatory compliance. A Certified Information Systems Security Professional (CISSP) and certified HIPAA privacy and security expert (CHPSE), she has led global initiatives to build and operationalize enterprise-wide privacy and security programs. As the former Chief Privacy and Records Officer at Merz Pharma Group, she architected a GDPR-compliant framework across 28 countries and implemented a unified records management system. Amy has served as a third-party Data Protection Officer for global companies and has testified in U.S. federal court as an expert on breach notification and the misuse of stolen personal data. She frequently assists companies in developing technical and organizational measures to protect data and respond to security incidents. With a legal foundation that includes litigation on trade secret misappropriation, computer fraud, and data misuse, Worley brings a uniquely integrated perspective to privacy and security governance. She advises executive teams and boards on breach readiness, incident response, and enterprise risk management related to personal data and cybersecurity threats. Worley holds multiple IAPP certifications (CIPP/US, CIPP/E, CIPM) and is a Fellow of the Information Privacy Fellowship. Her thought leadership spans AI governance, cross-border data transfers, and HIPAA liability, and she frequently contributes to legal and industry publications. She is also a certified Artificial Intelligence Governance Professional and continues to shape the evolving landscape of data ethics and security.