Overview
Dr. Natallia Karniyevich provides comprehensive advice to clients in the field of cybersecurity and data protection law.
Her work focuses in particular on supporting companies in meeting regulatory requirements and managing cybersecurity incidents.
She has many years of experience advising digital service providers, technology companies, and operators of critical infrastructure. Her expertise includes sector-specific cybersecurity regulations in industries such as healthcare and life sciences, automotive and aviation, telecommunications, digital infrastructure, and financial services.
A key focus of her practice is advising on the implementation of the NIS2 Directive, the Critical Entities Resilience Directive, and the Cyber Resilience Act.
In addition to her legal practice, Natallia regularly publishes on current issues in cybersecurity law and gives a talk as a guest speaker at the Berlin School of Economics and Law (HWR Berlin).
Results
Natallia advised:
- A Big 5 global tech company on a NIS2 compliance project, including monitoring implementation across all EEA member states, as well as on the Cyber Solidarity Act and the Critical Entities Directive*
- Major U.S. online media and cybersecurity software companies on the applicability of NIS2*
- A major global social media platform in a multijurisdictional cybersecurity compliance project*
- Several DAX40 companies on Cyber Resilience Act compliance strategy*
- Top analytics and cloud platform providers on the applicability of the NIS1 and NIS2 directives*
- A global critical infrastructure operator on ongoing cybersecurity regulatory matters under NIS1, NIS2, DORA, and Germany’s IT Security Act 2.0*
- A global AI-driven precision medicine company through customized cybersecurity workshops*
- Major pharmaceutical and healthcare companies in Switzerland, India, and the U.S. on NIS2 compliance and scoping projects*
- A global digital healthcare company on EU cybersecurity and privacy law requirements*
- A contact lens producer through a multijurisdictional cybersecurity survey*
- A critical infrastructure operator by leading its incident response efforts*
- A digital infrastructure company with global operations by leading its ransomware response*
*Matter handled prior to joining McDermott.
Community
International Association of Privacy Professionals (IAPP)
Credentials
Education
Ruhr University Bochum, Dr. jur., 2015
Higher Regional Court of Düsseldorf, Second State Examination, 2015
Ruhr University Bochum, First State Examination, 2009
Studies in International Law, Minsk, 2006
Admissions
Germany
Languages
English
Russian
Spanish
German