Overview

Kimberly is a member of the Constangy Cyber Team and is based in Austin, Texas, where she advises organizations on incident response, regulatory compliance, and information security risk management. 

Kimberly leads clients through high‑impact cyber events, including ransomware attacks, business email compromises, network intrusions, and insider‑driven data theft, overseeing forensic investigations, remediation efforts, and notification strategies. Her practice encompasses regulatory representation and strategic counsel on cybersecurity risk assessments and risk management plans, compliance obligations, policy development, and incident‑response preparedness.

Before joining Constangy, Kimberly advised clients on a range of technology, regulatory, and corporate matters. She earned her J.D., cum laude, from the University of Houston Law Center, where she served as a Legal Writing Fellow, a Teaching Assistant for Constitutional Law, and an Articles Editor for the Houston Journal of International Law. During law school, she also completed a judicial internship with the U.S. District Court for the Southern District of Texas and worked with The Lawfare Institute as a Cub Editor.

About Me

Kimberly is an enthusiastic reader with particular interests in J.R.R. Tolkien, Homer, Shakespeare, and Thomas Aquinas. She also has a strong appreciation for Classical‑era music, especially the works of Mozart. In addition to her literary and musical pursuits, she is an active member of her local animal‑welfare community, where she is dedicated to the care and advocacy of community cats.

Experience

Representative Matters

  • Leads comprehensive security risk assessments and risk management plans for organizations across industries, helping to strengthen their security posture and meet regulatory expectations.
  • Develops privacy and information security policies and procedures tailored to organizational needs and industry standards.
  • Counsels clients on privacy and data security obligations regarding privacy policies, vendor contract negotiations, and cybersecurity considerations.
  • Leads clients through all phases of incident response, including investigation, containment, remediation, and post‑incident review, ensuring alignment with legal, regulatory, and operational requirements.
  • Represents clients before federal and state regulatory authorities, leading responses to investigations related to data breaches and cybersecurity incidents.
  • Guides clients through proactive cyber‑incident readiness initiatives, including tabletop exercises, incident response planning, and development of ransomware‑specific procedures.

Credentials

Education

University of Houston Law Center

  • J.D., cum laude, 2023

Houston Christian University

  • B.A., Psychology, 2017

Professional & Civic Associations

Civic

  • Lear’s Legacy Cat Rescue, Board of Directors

Professional

  • Certified Information Privacy Professional (CIPP) for United States law (US) through the International Association of Privacy Professionals (IAPP)
  • Houston Bar Association

Admissions

  • Texas, 2023

“It’s a dangerous business, Frodo, going out your door. You step onto the road, and if you don't keep your feet, there’s no knowing where you might be swept off to.”  

Bilbo Baggins, The Fellowship of the Ring, by J.R.R. Tolkien
Jump to Page

Constangy, Brooks, Smith & Prophete, LLP Cookie Preference Center

Your Privacy

When using this website, Constangy and certain third parties may collect and use cookies or similar technologies to enhance your experience. These technologies may collect information about your device, activity on our website, and preferences. Some cookies are essential to site functionality, while others help us analyze performance and usage trends to improve our content and features.

Please note that if you return to this website from a different browser or device, you may need to reselect your cookie preferences.

For more information about our privacy practices, including your rights and choices, please see our Privacy Policy. 

Strictly Necessary Cookies

Always Active

Strictly Necessary Cookies are essential for the website to function, and cannot be turned off. We use this type of cookie for purposes such as security, network management, and accessibility. You can set your browser to block or alert you about these cookies, but if you do so, some parts of the site will not work. 

Functionality Cookies

Always Active

Functionality Cookies are used to enhance the functionality and personalization of this website. These cookies support features like embedded content (such as video or audio), keyword search highlighting, and remembering your preferences across pages—for example, your cookie choices or form inputs during submission.

Some of these cookies are managed by third-party service providers whose features are embedded on our site. These cookies do not store personal information and are necessary for certain site features to work properly.

Performance Cookies

Performance cookies help us improve our website by collecting and reporting information on its usage. We access and process information from these cookies at an aggregate level.

Powered by Firmseek