View Profile


First Name


Last Name




Teacher Biography


Joshua Mooney Chairs the firm’s Cyber Law and Data Protection Group and also is the firm’s Chief Privacy Officer. Josh advises companies, including members of the insurance and insurtech industries, on data use and ownership, licensing, privacy, and security, including under such laws as the CCPA, HIPAA, New York’s DFS Cyber Regulations and the SHIELD Act, BIPA, and the EU’s General Data Protection Regulation (GDPR). He also is active in the industry. He is a Vice Chair of the ABA TIPS Cybersecurity and Data Privacy Committee, and is the founding Chair of the Cybersecurity and Data Privacy Committee for the Pennsylvania Bar Association.​

Selected as a Pennsylvania Super Lawyer (2020), Josh also advises insurance carriers on media and cyber liability coverage at trial and appellate levels. His matters involve complex and emerging risks involving all manners of cyberattacks, including data breaches, ransomware, and business email compromises (BECs), as well as media and privacy claims and litigation. His coverage matters involve nation state cyberattacks on media entities, film productions, Top 40 music, reality television programming, newspaper liability and underlying bankruptcy, software and gaming developers, banks, and casinos.​

Josh regularly writes and lectures on cybersecurity and data privacy and coverage issues, teaching CLEs and providing in-house seminars and training. He has guest-lectured on cyber law and insurance at Temple University Fox School of Business and Rutgers Law School, and has been quoted in such publications as The Wall Street Journal, Law360, Business Insurance, and Compliance Week.​

Outside of law, Josh is a founding member of The Oxford & Cambridge Society of Philadelphia, and has been designated by Cambridge in America and the University of Cambridge as an official alumnus contact for the Commonwealth of Pennsylvania. He also served as an editor for a working group of X9, an ANSI-accredited standards developing organization, to develop a universal standard for data protection and data breach notification in the financial services industry.​