Rena Mears > DLA Piper LLP (US) > San Francisco, United States > Lawyer Profile

Rena Mears

Work Department

Data Protection, Privacy and Security; Cybersecurity

Position

Principal

Career

Rena Mears has more than 25 years of experience advising global companies in financial services, hospitality, technology, pharma, biotechnology and consumer products on data risk, privacy, cybersecurity and information security matters. She has built and led teams with the diverse skill sets necessary to manage information assets in the evolving global market. Rena has worked closely with boards and senior management to evaluate data risk and deploy effective risk mitigation strategies in the enterprise.  She  has also helped organizations design and implement the effective operational programs, processes and controls  required to comply with the legal, regulatory and contractual requirements affecting companies operating in complex regulatory environments.

Before joining DLA Piper, Rena was the national and global leader of Deloitte’s privacy and data protection services, and more recently was managing director at a leading US law firm.  

Rena works closely with lawyers in DLA Piper’s global Data Protection, Privacy and Security group – highly rated by Chambers and Legal 500 – to augment our offerings in privacy and cybersecurity assessments, program and control design, data mapping, and program and vendor-risk management.

She has significant experience leading major enterprise initiatives for global companies focused on:

• Data asset risk management services

• Privacy and security program development

• Third-party risk management

• Cybersecurity, data protection, and data breach response

Forensics, data analytics, and data leakage:

• Legal and regulatory compliance

• Privacy and security gap assessments and reporting

• Cross-border data flow compliance and management

• Security and privacy by design in products and services

Rena’s engagements typically involve risk and threat analysis, strategy and program development (including governance, operations, assessment, and reporting), data mapping , controls assessment,   and remediation and program sustainment activities. In addition, Rena has led multi-year engagements dealing with cyberthreats, incident response, and APT analysis for global companies.

She further advises clients on issues involving:

• General Data Protection Regulation; Safe Harbor/Privacy Shield• US breach notification laws

• Gramm-Leach-Bliley Act

• State privacy and data protection laws

• Health Insurance Portability and Accountability (HIPAA)

Education

M.B.A., Auburn University; B.A., University of Albuquerque