Catherine Muir

Catherine L. Muir

Of Counsel
Baker & McKenzie LLP


Catherine Muir is Of Counsel in the Washington, DC office. She practices in the areas of cybersecurity and resiliency, privacy compliance, internal investigations, incident preparedness and response, information governance, and e-discovery. She is a former senior counsel at Sprint (now T-Mobile), where she was responsible for information governance and e-discovery policies and strategies and transactional matters for the network engineering group.

Practice Focus

Catherine focuses her practice on internal investigations, regulatory investigations, corporate compliance, and complex criminal and civil litigation, and advises global corporations in the automotive, technology, retail, financial services, telecommunications, and manufacturing industries on information and product security, operational resiliency, privacy compliance, incident response and crisis management, and supply chain and service provider security.

Representative Legal Matters

  • Serve as a legal advisor to Fortune 20 company on the governance, compliance, and legal issues associated with board of directors-mandated cyber resilience project.

  • Served as lead legal advisor to Fortune 20 company on roll-out of governance framework, business and technical requirements, procedures, and training associated with company’s global privacy compliance program.

  • Assisted Fortune 20 company in documenting cross-functional efforts in the development of company’s California Consumer Privacy Act program.

  • Represented two of the largest global manufacturers in their respective industries in connection with a FTC non-public inquiry and a civil investigative demand, respectively, related to data security practices and published zero day source code vulnerabilities. Matters were both successfully resolved with no action against companies by the FTC.

  • Served as lead investigative counsel and a legal advisor to a leading global market maker in a theft of trade secrets civil litigation matter where the firm ultimately prevailed on nearly all claims and was granted attorneys’ fees.

  • Represented financial industry firm in connection with a non-public inquiry related to a data security incident. Matter was successfully resolved with no action against firm by the FFIEC.

  • Represented financial industry technology firm in connection with a breach of financial firm’s network. Matter was successfully resolved with no further action against firm by the FFIEC.

  • Counseled automotive industry company in areas related to secure app development and various connected car security-related issues, impacting business decisions in fast-evolving and high legal and regulatory risk environment.

  • Served as lead legal advisor to a leading health information technology provider to assess security practices against industry standards.

  • Managed discovery in response to DOJ Criminal Grand Jury Subpoena, DOJ second requests in the transportation and ski resort industries, DOJ civil investigative demand and FCC response in the telecommunications industry, FTC inquiry regarding a significant data breach in the grocery industry, DOJ and SEC investigation in the financial industry.

Professional Associations and Memberships

  • American Bar Association - Cyberspace Law Committee of the Science and Technology Law Section
  • American Bar Association - Privacy and Information Security Committee of the Antitrust Law Section
  • District of Columbia Bar Association - Ediscovery Committee, Litigation Section
  • The Sedona Conference Working Group 1 on Electronic Document Retention and Production; Co-Editor, Structured Data Principles
  • The Sedona Conference Working Group 11, Privacy and Data Security


  • District of Columbia~United States (2008)


  • Vermont Law School (J.D.) (1996)
  • Miami University (Ohio) (B.A.) (1988)


  • English

Moderator, “The Future of Automotive Cybersecurity,” Automotive IQ 10th Annual Automotive Cybersecurity Summit, At the Helm of Autonomous and Connected Vehicle Safety, June 2020

Moderator, “Autonomous Vehicles: Cyber-Safe at Any Speed?” Georgetown Law Center 2019 Cybersecurity Law Institute, May 2019

Moderator, “Understanding the Current Regulatory Environment for Automotive Cybersecurity,” Automotive IQ 9th Annual Automotive Cybersecurity Summit, Securing the Future of Mobility, March 2019

Panelist, "Understanding Risks & Liability," ITS America Cybersecurity Risk and the Future of Mobility Forum, August 2018

Workshop Facilitator, “Legal Standards & Regulations Shaping the Automotive Landscape,” Automotive IQ 7th Annual Automotive Cybersecurity Summit, Pre-Summit Workshop, March 2018

Panelist, “Securing IT Backend Receivers & Vehicle & Consumer Data: Privacy and Safety Concerns of the Connected Car,” Automotive IQ 7th Annual Automotive Cybersecurity Summit, March 2018