Certificate in Cybersecurity & the Law
Delivered by industry experts and designed to help you navigate the legal complexities of cybersecurity
February 9 - March 8, 2024
35.5 hours of learning
Hybrid
Law Society of Ontario accredited
$3,995 + HST

Cybersecurity & the Law: Risk Management in the Digital Economy
In today’s digital landscape, the risks to cybersecurity are ever-present and constantly evolving. As cyber threats become more sophisticated, the need for corporate leaders and legal professionals well-versed in the intricacies of cybersecurity and AI is paramount.
Our new certificate program, Cybersecurity & the Law: Risk Management in the Digital Economy, launched in collaboration with Lincoln Alexander School of Law at Toronto Metropolitan University, is your shield against these risks.
We will empower you to navigate the legal complexities of cybersecurity, assess and manage risks, and provide expert guidance in crisis situations.
Who should attend?
Senior Leaders and Managers, Technology Team Leads, and In-House / Corporate Counsel
This certificate program is aimed at business professionals and mid- and senior-level lawyers who hold primary responsibility for advising corporations about integrating cybersecurity best practices into operations. This program will foster a deeper dive into understanding the legal implications of client cyber risks, including case law, and regulatory landscapes. Participants will learn how to deliver legal advice during cybersecurity incidents and gain expertise in data protection mechanisms, crisis management and post-incident analysis.
What you’ll learn
Upon completion, participants will have the knowledge and key competencies to support their ability to provide foundational advice on legal cybersecurity and privacy issues – from prioritizing operational action plans that help to avoid legal consequences, to mitigating liability while recovering from a cyber incident. Participants will be equipped to rapidly acquire and assess mission-critical information, formulate and implement action plans, effectively evaluate success and adapt accordingly, and function confidently as organizational advisors.
Understanding Technology in Contemporary Business
In-Person / Streamed - February 9, 2024 - 8:30 AM - 4:00 PM
This module concentrates on understanding the vital intersection of technology and contemporary business. Participants will delve into the client-based approach to cybersecurity needs, grasp the relevance of organizational missions and governance, explore technology infrastructure and data types, and analyze threat and risk assessments. Interactive lectures, group activities, and scenario-based exercises will enable participants to define business contexts, map technology, and provide legal insights, strengthening their ability to align technology with legal considerations.
Assessing Legal Risks in Cybersecurity
Livestream February 16, 2024 9:00 AM - 12:30 PM and recordings
Module 2 zeroes in on assessing legal risks in the realm of cybersecurity. Participants will identify legal implications related to client cyber risk, examine the information/data regulatory landscape encompassing privacy laws and data protection, and learn to provide relevant legal advice based on an organization's cybersecurity posture. Through pre-recorded sessions, panel discussions, and case studies, attendees will gain a comprehensive understanding of legal intricacies, enabling them to offer informed guidance.
Privacy, Data, and Information Protection
Livestream February 23, 2024 9:00 AM - 12:00 PM and recordings
In Module 3, the focus shifts to privacy, data, and information protection within the digital economy. Participants will examine various types of data and their protection, explore regulatory requirements, and engage in a case study exercise. By completing privacy impact assessments and evaluating compliance, participants will develop the skills needed to advise organizations on data protection while navigating complex regulatory landscapes.
Supporting a Client in Crisis: Advising in Cybersecurity Incident Response
Livestream March 1, 2024 9:00 AM - 1:10 PM and recordings
Module 4 delves into the crucial role of legal counsel in supporting clients during cybersecurity crises. Participants will learn about crisis management and communications, explore tools and techniques for advising clients in crisis, and engage in a tabletop exercise to simulate a basic breach scenario. By understanding the incident response process, participants will be better prepared to deliver legal advice and manage post-incident legal issues effectively.
AI and Cybersecurity - Symposium and Synthesizing Exercise
In-Person / Streamed - March 8I , 2024 - 8:30 AM - 5:00 PM
The final module, Module 5, brings together all the knowledge and skills acquired throughout the program in a symposium and synthesizing exercise. Participants will explore AI as a cybersecurity threat and solution, delve into ethical AI implementation, and engage in group discussions to synthesize their learnings. This module fosters critical thinking and enables participants to apply their legal and cybersecurity expertise to real-world scenarios, ultimately preparing them to become leaders in the field of technology and law.
Understanding Technology in Contemporary Business
Mode of Delivery: In-Person / Virtual
Venue: TMU Downtown Campus
This module concentrates on understanding the vital intersection of technology and contemporary business. Participants will delve into the client-based approach to cybersecurity needs, grasp the relevance of organizational missions and governance, explore technology infrastructure and data types, and analyze threat and risk assessments. Interactive lectures, group activities, and scenario-based exercises will enable participants to define business contexts, map technology, and provide legal insights, strengthening their ability to align technology with legal considerations
Assessing Legal Risks in Cybersecurity
Mode of Delivery: Virtual
Venue: Online
Module 2 zeroes in on assessing legal risks in the realm of cybersecurity. Participants will identify legal implications related to client cyber risk, examine the information/data regulatory landscape encompassing privacy laws and data protection, and learn to provide relevant legal advice based on an organization's cybersecurity posture. Through pre-recorded sessions, panel discussions, and case studies, attendees will gain a comprehensive understanding of legal intricacies, enabling them to offer informed guidance.
Privacy, Data, and Information Protection
Mode of Delivery: Virtual
Venue: Online
In Module 3, the focus shifts to privacy, data, and information protection within the digital economy. Participants will examine various types of data and their protection, explore regulatory requirements, and engage in a case study exercise. By completing privacy impact assessments and evaluating compliance, participants will develop the skills needed to advise organizations on data protection while navigating complex regulatory landscapes.
Supporting a Client in Crisis: Advising in Cybersecurity Incident Response
Mode of Delivery: Virtual
Venue: Online
Module 4 delves into the crucial role of legal counsel in supporting clients during cybersecurity crises. Participants will learn about crisis management and communications, explore tools and techniques for advising clients in crisis, and engage in a tabletop exercise to simulate a basic breach scenario. By understanding the incident response process, participants will be better prepared to deliver legal advice and manage post-incident legal issues effectively.
AI and Cybersecurity - Symposium and Synthesizing Exercise
Mode of Delivery: In-Person / Virtual
Venue: TMU Downtown Campus, Online
The final module, Module 5, brings together all the knowledge and skills acquired throughout the program in a symposium and synthesizing exercise. Participants will explore AI as a cybersecurity threat and solution, delve into ethical AI implementation, and engage in group discussions to synthesize their learnings. This module fosters critical thinking and enables participants to apply their legal and cybersecurity expertise to real-world scenarios, ultimately preparing them to become leaders in the field of technology and law.
Program Chairs

Imran Ahmad
Partner, Head of Technology, Co-Head of Information Governance, Privacy and Cybersecurity
Norton Rose Fulbright Canada LLP

Melissa Carvalho
Vice President, Global Cyber Security Strategic Services, Co-Lead T&O Pride ERG
Royal Bank of Canada
Who you’ll learn from



















What you'll gain on completion
LSO Accreditation
The Lincoln Alexander School of Law is an accredited provider with the Law Society of Ontario. See below the eligible hours you may claim.
This program contains:
- Substantive Content – 32 hours and 45 minutes
- Professionalism Content – 2 hours
- EDI Professionalism Content – 1 hour
Total: 35 hours and 45 minutes

Certificate of Program Completion
Attendees will receive a certificate upon completion of this program. Participants must attend all program modules and participate in small group and online activities to receive their certificate.
Pricing and contact
Price
$3,995 + HST.
Group Discounts
Group discounts are available. Organizations sending 2-10 attendees are entitled to a 10% discount. For larger groups please get in touch for available discounts. If you wish to receive an invoice or to register as a group, please contact Bernard Sandler at bsandler@torontomu.ca
Cancellation and Refund Policy
A full refund is available up to three weeks before the program start date. After that, a refund minus a $300 processing fee is available until the start date. No refunds are available once the program has begun. Attendee substitutions can be accommodated.
Contact
For any questions about the program, please email Bernard Sandler at bsandler@torontomu.ca