Roya L. Butler is an associate in the Privacy and Cybersecurity Practice at Paul Hastings, based in the firm's D.C. office. Ms. Butler focuses her practice on assessing privacy and cybersecurity risks in corporate transactions and advising clients on a range of data security, privacy, gaming, and digital asset-related laws and regulations. Her experience includes investigation, response, and litigation of large-scale cybersecurity incidents. Ms. Butler earned her Baccalaureate from The Wharton School of Business of the University of Pennsylvania and her Juris Doctor from Georgetown Law.

Prior to joining Paul Hastings, Ms. Butler worked as a law clerk at the Federal Trade Commission in the Division of Privacy and Identity Protection; the United States Securities and Exchange Commission in the Enforcement Division's Cyber, Market Abuse, and Trial Units; and at the Department of Defense, Military Commission. Her experience at the agencies includes investigating regulatory compliance, and drafting governmental subpoenas and investigative demands. She has completed CompTIA Security+ SYO-501 training and holds an active Secret Clearance.

Previous to law school, Ms. Butler worked as a programmer, database administrator, and project manager; has experience as a cybersecurity analyst, penetration tester; has assisted with and participated in capture the flag competitions, including PicoCTF; and advising of incident response planning, including working with Cyber Incident Response Teams (CIRT) and scenario testing through Red/Blue Team simulated attacks and Tabletop Exercises (TTX).

• Stingray Stung, Harvard Journal of Law & Technology, volume 34
• Silencing Speech Is Bad for Democracy, The Journal of Law and Technology at Texas, volume 5 (forthcoming)