Kate M. Growley

Overview

Businesses around the globe rely on Kate M. Growley to navigate their most challenging digital issues, particularly those involving cybersecurity, artificial intelligence, digital infrastructure, and their intersection with national security. Clients seek her guidance on proactive compliance, incident response, internal and government-facing investigations, and policy engagement. With a unique combination of legal, policy, and consulting experience, Kate excels in translating complex technical topics into advice that is practical and informed by risk and business needs.

Kate has extensive experience working with members of the U.S. government contracting community, especially those within the Defense Industrial Base. She has partnered with contractors from every major sector, including technology, manufacturing, health care, and professional services. Kate is an IAPP AI Governance Professional (AIGP) and a Certified Information Privacy Professional for both the U.S. private and government sectors (CIPP/G and CIPP/US). She is also a Registered Practitioner with the U.S. Cybersecurity Maturity Model Certification (CMMC) Cyber Accreditation Body (AB).

Having lived in Greater China for several years, Kate also brings an uncommon understanding of digital and national security requirements from across the Asia Pacific region. She has notable experience with the regulatory environments of Australia, Singapore, Japan, and Greater China—including the growing regulation of data flows between the latter and the United States.

Kate is a partner in the firm’s Washington, D.C., office, as well as a senior director in the firm’s consultancy Crowell Global Advisors, to which she was seconded for several years. She is a founding member of the firm’s Privacy & Cybersecurity Group and part of the firm’s AI Steering Committee. She has been internationally recognized by Chambers and named a “Rising Star” by both Law360 and the American Bar Association (ABA). She has held numerous leadership positions in the ABA’s Public Contract Law and Science & Technology Sections and has been inducted as a lifetime fellow in the American Bar Foundation.

Career & Education

Florida State University, B.S., summa cum laude, International Relations
University of Virginia School of Law, J.D.
- Florida State University, B.S., summa cum laude, International Relations
- University of Virginia School of Law, J.D.
Virginia
District of Columbia
- Virginia
- District of Columbia

Kate's Insights

Client Alert | 5 min read | 10.08.25

California’s AI Transparency Act (CAITA) May be Amended to Regulate Social Media Platforms

Last year, the California General Assembly passed the California AI Transparency Act (CAITA), which Governor Gavin Newsom signed into law on September 19, 2024, and goes into effect on January 1, 2026. This may change because this year, the same General Assembly passed AB 853, an amendment to CAITA with potentially far-reaching implications....

Client Alert | 6 min read | 10.08.25
Hacker No Fly Zone: FAA and TSA Propose Cybersecurity Rules for Drone Ecosystem
Webinar | 10.08.25
Key Takeaways from DOJ’s Civil Cyber-Fraud Initiative
Speaking Engagement | 10.08.25
"Key Takeaways from DOJ’s Civil-Cyber Fraud Initiative," Crowell & Moring Webinar

View All Insights

Insights

Client Alert | 5 min read | 10.08.25

California’s AI Transparency Act (CAITA) May be Amended to Regulate Social Media Platforms

Client Alert | 6 min read | 10.08.25

Hacker No Fly Zone: FAA and TSA Propose Cybersecurity Rules for Drone Ecosystem

Webinar | 10.08.25

Key Takeaways from DOJ’s Civil Cyber-Fraud Initiative

Speaking Engagement | 10.08.25

"Key Takeaways from DOJ’s Civil-Cyber Fraud Initiative," Crowell & Moring Webinar

Ready To Know Your Data? Justice Department Issues Implementation And Enforcement Guidance For Data Security Program Protecting Bulk Sensitive Data
|
08.01.25
Journal of Federal Agency Action
Asia-Pacific Strives to Keep Pace with Cyber Threats
|
01.28.25
How Businesses Can Navigate China’s Data Regulations in 2025
|
01.28.25
Global Developments: New Actions in the Asia-Pacific
|
05.14.24
Privacy and Cybersecurity Outlook: The 2024 Landscape
China: Recent Developments In Cross-Border Data Transfer Requirements
|
12.18.23
OneTrust DataGuidance
Steep Costs, Troubling Questions Roil DOD Cybersecurity Program Rollout
|
05.22.22
README Security
Cybersecurity Provisions Proliferate In The National Defense Authorization Act
|
03.15.22
Government Contracting Law Report
A New Flightpath For Cybersecurity
|
09.08.21
ACC Docket
Advancing America’s Dominance in AI: The 2021 National Defense Authorization Act’s AI Developments
|
05.06.21
The Journal of Robotics, Artificial Intelligence & Law
National Defense Authorization Act For Fiscal Year 2021: Need-to-Know Provisions For Government Contractors
|
04.27.21
Government Contracting Law Report
View All Publications
California’s AI Transparency Act (CAITA) May be Amended to Regulate Social Media Platforms
|
10.08.25
Hacker No Fly Zone: FAA and TSA Propose Cybersecurity Rules for Drone Ecosystem
|
10.08.25
From Yellow Jackets to Red Flags: DOJ Stings Georgia Tech for Alleged Cybersecurity Noncompliance
|
10.06.25
White House Seeks Industry Input on Laws and Rules that Hinder AI Development
|
09.29.25
Finally, the CMMC Final Rule: DoD Completes CMMC Rulemaking, Ushering in New Era in DoD Cybersecurity
|
09.10.25
Hardening Software Security: DOJ’s Civil Cyber Fraud Settlements Continue to Illumina[te] the Importance of Cybersecurity
|
08.26.25
DOJ Data Security Program Update: Active Enforcement Begins This Week
|
07.07.25
Cross-Border Data, Rising Risks: How International Arbitration Can Help
|
06.16.25
Trump Administration Cyber Executive Order Revises Prior Administrations’ Requirements
|
06.10.25
Ready To Know Your Data? DOJ Issues Implementation and Enforcement Guidance for Data Security Program Protecting Bulk Sensitive Data
|
04.18.25
View All Client Alerts
"Key Takeaways from DOJ’s Civil-Cyber Fraud Initiative," Crowell & Moring Webinar
|
10.08.25
"Cyber, Digital, AI, Insider Comprehensive Risk Management," C-Sweet Los Angeles Chapter Networking Event
|
10.07.25
"Information Risk Management and Security," 3rd Annual Midwest Government Contracts Seminar, Chicago, IL.
|
09.17.25
"CMMC Final Rule: What to Know," Crowell & Moring Webinar.
|
09.15.25
"The Evolving AI Legal and Policy Landscape: Mid-2025 Update," Crowell & Moring Webinar, 2025.
|
04.22.25
"The Evolving AI Legal and Policy Landscape: Mid-2024 Update," Crowell & Moring Webinar, 2024.
|
07.25.24
"Approaching Privacy in Ethical AI: The Pros, Cons and Grays," IAPP Asia Privacy Forum 2023, Singapore.
|
07.20.23
2023 AsRES-GCREC Joint International Real Estate Conference
|
07.13.23
Thought Leaders Club: A 360-Degree View of Cyber Incident Response
|
07.12.23
"Navigating China's Evolving Data and Cybersecurity Regime," Sanford School of Public Policy Graduate Course "Technology, Policy, and China" at Duke University
|
09.23.22
View All Speaking Engagements
DOJ Poised To Pounce On Data Security Violators
|
07.11.25
Law360
DOD's Cybersecurity Overhaul Creates New FCA Risk
|
11.05.21
Law360
Defense Industry Awaits Update On Costly Trump-Era Cyber Rule
|
08.11.21
Bloomberg Law
Top 6 Gov't Contracts Policies To Watch: Midyear Report
|
07.28.21
Law360
Top 4 Gov't Contracting Policies Of 2021: Midyear Report
|
07.16.21
Law360
Acting Pentagon Chief Signs Out 'Cyberspace Accountability' Directive
|
11.25.20
Inside Defense
Pentagon To Require New Cybersecurity 'Certification' From Defense Contractors
|
05.31.19
Inside Defense
What Contractors Should Expect From The Trump Administration
|
01.27.17
Federal News Radio
Rule Targets Contractors' Use of Controlled Unclassified Info
|
11.08.16
Bloomberg BNA
Insights From the Women of Cybersecurity
|
05.01.16
American Bar Association
View All Press Coverage
Crowell & Moring Achieves CMMC Registered Provider Organization Status
|
03.02.21
Chambers Ranks Three Practice Groups and Ten Lawyers in 2021 Global Guide
|
02.23.21
Chambers USA 2020 Ranks 53 Crowell & Moring Lawyers and 21 Practice Areas Among Best in U.S.
|
04.23.20
Crowell & Moring Elects Eight New Partners and Promotes Seven to Senior Counsel and 26 to Counsel Positions
|
01.02.20
Law360 Names Crowell & Moring's Government Contracts Group a "Practice Group of the Year" for the Ninth Consecutive Year
|
02.22.19
Crowell & Moring Elects Six New Partners and Promotes 19 Associates to Counsel
|
01.09.17
Crowell & Moring's Government Contracts Group Named to Law360's "Practice Groups of the Year" for Fifth Consecutive Year
|
01.09.15
Crowell & Moring Releases "Data Law Trends & Developments" Report
|
06.05.14
Byte-Sized Q&A: What do I need to know about Medium Assessments?
|
05.17.22
Byte-Sized Q&A: What’s not in CMMC 2.0?
|
12.03.21
Byte-Sized Q&A: Why care about COTS?
|
10.21.21
Byte-Sized Q&A: Part 3 – The CMMC Clause
|
09.28.21
Byte-Sized Q&A: Part 2 - The NIST DoD Assessment Clauses
|
09.07.21
Byte-Sized Q&A: Part 1 - The Safeguarding Clause
|
08.17.21
Byte-Sized Q&A: Paying a Criminal: Ransomware Payments and Related Sanctions Risks
|
07.29.21
Byte-Sized Q&A: What is Ransomware?
|
07.15.21
Byte-Sized Q&A: What are the DoD’s Requirements for Cloud Services?
|
05.17.21
Byte-Sized Q&A: Tell me about FedRAMP
|
05.06.21
View All Podcast Episodes
Hardening Software Security: DOJ’s Civil Cyber Fraud Settlements Continue to Illumina[te] the Importance of Cybersecurity
|
09.02.25
Crowell & Moring’s Government Contracts Legal Forum
Last Chance to Comment on FASC Rule – More Supply Chain Restrictions Coming
|
10.27.20
Crowell & Moring’s Government Contracts Legal Forum
Chinese Individual Indicted for Alleged Trade Secret Theft from Semiconductor Company
|
10.23.20
Crowell & Moring’s Trade Secrets Trends
Companies Protecting Trade Secrets Should Consider Role of NIST’s Enhanced Security Requirements
|
07.16.20
Crowell & Moring’s Trade Secrets Trends
Energy Cybersecurity Act of 2019
|
02.10.20
Crowell & Moring's Data Law Insights
DoD Acquisition Chief Looks Back at the Year that Was and Previews the Year to Come
|
12.24.19
Crowell & Moring's Government Contracts Legal Forum
Privacy & Cybersecurity – New York Enacts the SHIELD Act
|
08.20.19
Crowell & Moring's International Trade Law
NIST Extends Comment Period for Two New Drafts
|
07.15.19
Crowell & Moring's Data Law Insights
The U.S. Announces Endorsement of OECD’s Principles for Responsible AI
|
06.04.19
Crowell & Moring's Government Contracts Legal Forum
Seventh Circuit Wades into Big Data Case Law
|
03.28.19
Crowell & Moring's Data Law Insights
View All Blog Posts

View All Insights

Practices

Industries

Artificial Intelligence

Kate's Insights

Client Alert | 5 min read | 10.08.25

California’s AI Transparency Act (CAITA) May be Amended to Regulate Social Media Platforms

Last year, the California General Assembly passed the California AI Transparency Act (CAITA), which Governor Gavin Newsom signed into law on September 19, 2024, and goes into effect on January 1, 2026. This may change because this year, the same General Assembly passed AB 853, an amendment to CAITA with potentially far-reaching implications....

Client Alert | 6 min read | 10.08.25
Hacker No Fly Zone: FAA and TSA Propose Cybersecurity Rules for Drone Ecosystem
Webinar | 10.08.25
Key Takeaways from DOJ’s Civil Cyber-Fraud Initiative
Speaking Engagement | 10.08.25
"Key Takeaways from DOJ’s Civil-Cyber Fraud Initiative," Crowell & Moring Webinar

View All Insights

Kate M. Growley

Overview

Overview

Career & Education

Education

Admissions

Kate's Insights

Insights

Publications

Client Alerts

Speaking Engagements

Press Coverage

Firm News

Podcasts

Blog Posts

Practices

Industries

Kate's Insights