Justin Joy is a shareholder in the Memphis office of the law firm Lewis, Thomason, King, Krieg & Waldrop, P.C. In addition to a range of experience in litigation and business law matters, Justin heads up Lewis Thomason's cybersecurity practice group. He provides counsel to clients in the area of information privacy and cybersecurity including security incident investigation, development of security awareness programs, policy review and drafting, cyber risk management, insurance policy coverage consultation and breach response management. Specifically in the area of healthcare, Justin counsels covered entities on a variety of matters pertaining to HIPAA Privacy Rule, Security Rule, and Breach Notification Rule compliance.
He is a Certified Information Privacy Professional/US (CIPP/US) through the International Association of Privacy Professionals. Justin speaks frequently to groups and organizations on the topic of information privacy and cybersecurity at a variety of events. He is a 2001 graduate of Wake Forest University and holds a law and MBA degree from the University of Memphis.