Can your clients trust your cyber strategy?

It is not just clients’ businesses that are vulnerable to cyber-attacks - the legal profession is equally susceptible, a tech security specialist says.

Can your clients trust your cyber strategy?
The highly sensitive information that legal companies hold put them in a position of vulnerability, says Howard Nicholls, general manager of tech security firm Network Box.
“If systems were compromised, the personal and confidential nature of leaked customer information would lead to severe and potentially irredeemable damage both to clients and to the legal firm,” Nicholls told NZLawyer.
“If your own cyber protection is not sufficient, how can you reasonably advise your clients on the necessity of cyber protection to secure their intellectual assets?”
The biggest risk of a cyber-attack comes from not knowing your firm’s cyber weaknesses, he said.
He gave six recommendations to firms for becoming more cyber-aware. “These apply regardless of the size of your business.”
  1. Understand your own cyber risk profile. 
Nicholls recommended getting a cyber-assessment carried out. “These can be affordable for SMBs as well as larger companies.

“Assess your company’s capabilities for identifying and dealing with cyber threats and data breaches.

“A good report should inform in a way which is mindful of your legal business context, geography, structure, specialisms etc.”
  1. Identify areas to take action. 
Based on the results of the cyber risk profile, Nicholls recommended prioritising the areas of your firm that most need managed cyber risk.

“A good cyber assessment will suggest action plans that close current gaps in your defences and protect you from threats in the future."
  1. Identify practical solutions to the areas requiring action.
Nicholls advised that firms should develop policies, training and processes to mitigate cyber risk, as well as investing in the technology required to protect their network.

“Ensure the people within your organisation are held accountable and fully aware of their obligations to reducing your risk, from the boardroom to individual network users.

“Every member of your company has a role to play in protecting your systems and information to reduce the risk of a cyber-breach.”
  1. Implement the plan to put in place the identified solution
Nicholls continued:  “But don’t increase your business risk again by delaying,”

The cyber threat landscape is highly dynamic, new threats emerge daily. The sooner you implement new measures, the sooner your risk and associated cost is reduced.”
  1. Review and update. 
Once in place continually review your cyber risk profile and the solution plan, Nicholls advised.
“In summary - get aware, get protected.  Build your firm’s reputation as a good cyber citizen,” Nicholls said.

Free newsletter

Subscribe to our FREE newsletter service and we’ll keep you up-to-date with the latest breaking news, cutting edge opinion, and expert analysis affecting both your business and the industry as whole.

Please enter your email address below and click on Sign Up for daily newsletters from NZ Lawyer.

Recent articles & video

W+K swipes team of partners from DLA Piper

Jury trials set to recommence in District Court next week

Parliament passes bill improving conduct of sexual offence trials

Clyde & Co and Fieldfisher raise salaries for newly qualified lawyers in London

Gibson Sheat brings in new partner to boost litigation and construction teams

NWM elevates two to associate

Most Read Articles

Bell Gully rings in new year with major appointments

Gibson Sheat brings in new partner to boost litigation and construction teams

W+K swipes team of partners from DLA Piper

Local sports star tops up $40k theft charge with fresh $60k fraud charge during hearing