Andrew Tannenbaum
Andrew Tannenbaum

Andrew Tannenbaum

Partner

Andrew is Global Co-Head of Cybersecurity.

Andrew is a seasoned cybersecurity and technology lawyer with over two decades of experience in financial services, technology, government, and national security. With his unique background combining senior in-house and government roles, Andrew brings a deep and first-hand understanding of the challenges clients face navigating cyber legal risk in highly regulated industries. He is a trusted advisor to boards, C-suite executives, general counsels, and CISOs, providing practical and proactive counsel on cyber legal risk management and incident response.

Andrew was the first Chief Cybersecurity Counsel at IBM, where he founded one of the earliest corporate global cyber legal teams, and he was General Counsel for all technology and operations at Barclays, including cyber, data, and artificial intelligence. During a decade in government, Andrew served as Deputy General Counsel of the National Security Agency and held prominent positions in the White House and Department of Justice. He has overseen hundreds of cyber incidents at all levels of severity, and he has led global in-house teams over related areas such as operational resilience, emerging technology, data privacy, intellectual property, investigations, and crisis management.

A recognized thought leader, Andrew teaches cybersecurity, privacy, and government surveillance law at Columbia Law School, has testified before Congress on cybersecurity law, and has written for publications such as The Wall Street Journal and Harvard Business Review.

Expertise

Experience

Pro bono

  • Serving as advisor to mental wellness tech start-up that supports student athletes.
  • Served on board of directors for SCOPE, a non-profit that provides summer camp opportunities and college scholarships for disadvantaged children (2017-2024).
  • Served on Racial Equity Task Force for Town of Mamaroneck, NY (2020-2022).

Published Work

  • Author, Why Do IoT Companies Keep Building Devices With Huge Security Flaws?, Harvard Business Review, 2017
  • Author, To Prevent Cyberattacks, Share the Threat Data, Op-Ed, Wall Street Journal, 2015
  • Author and Testifying Witness, The Growing Cyber Threat and its Impact on American Business, Statement for the Record, United States House of Representatives Permanent Select Committee on Intelligence, 2015

Speaking Engagements

  • Panelist, Cybersecurity, Hacking, and Data Breach – Scenarios for Preparedness, PLI TechLaw Institute, March 2024
  • Law & Technology Practitioner in Residence, Perspectives in Cybersecurity and Informational Privacy, Indiana University Maurer School of Law, February 2024
  • Guest Lecturer, Cyber Law & Ethics: A Tabletop Exercise, Dartmouth College Computer Science Program, November 2023
  • Speaker, Legal Perspectives in Cybersecurity, Columbia Law School Society for Law, Science & Technology, October 2023
  • Panelist, Cyber Issues: Traps for the Unwary, SIFMA Annual C&L Seminar, March 2022
  • Panelist, Cybersecurity Update: Combating an Evolving Threat, SIFMA C&L Virtual Forum, July 2021

Leadership Positions And Professional Affiliations

  • Adjunct Faculty, Lecturer in Law, Columbia Law School
  • Founding Member, Cyber Counsel Group

Awards

  • Cybersecurity & Data Privacy Trailblazer, National Law Journal, 2016
  • Attorney General’s Distinguished Service Award, 2010

Qualifications

Admissions

New York, 2001

Academic

JD, Columbia Law School, 2000

AB, Dartmouth College, 1997

Disclaimer
A&O Shearman was formed on May 1, 2024 by the combination of Shearman & Sterling LLP and Allen & Overy LLP and their respective affiliates (the legacy firms). Any matters referred to above may include matters undertaken by one or more of the legacy firms rather than A&O Shearman.