Citation Cyber / Blogs / Securing The Law Firm 2014

Securing The Law Firm 2014

Mitigate Cyber Security will be exhibiting at Securing The Law Firm 2014 as a networking sponsor.

Now in its third edition, Securing the Law Firm is the leading e-crime and information security forum specifically aimed at key IT security decision-makers in the legal services. Welcoming an audience of over 100 professionals, it is the largest gathering of its kind. Whether it is espionage, insider risk, or insecure transfer platforms, the threats facing lawfirms are manifold. This event offers practical guidance and strategic insights through a balance of educational seminars and expert presentations in front of those responsible for protecting reputation, setting technology strategy, and ensuring compliance in the protection of sensitive data. Delegates also have the chance to network and exchange insights about the latest industry developments in an invitation-only environment.

Speakers include:

Ohad Bobrov, CTO and co-founder, Lacoon Mobile Security
James Druce, Account Director at Check Point SW Technologies
Luisa Gentile, Security Awareness Transformation Manager, Group Corporate Security, Vodafone
Tony Hibbert, Chief Information Security Officer/Deputy CIO, Intrum Justitia
Sam Hutton, CTO, Glasswall Solutions
Neira Jones, FBCS, Chairman, Global Advisory Board, CSCSS & Chairman, Advisory Board, Ensygnia
Rashmi Knowles, Chief Security Architect EMEA, RSA
Mark Hughes, CEO, BT Security
Stuart McKenzie, Senior Consultant, Context Information Security
Simon Moores, Vice Chairman, Conservative Technology Forum
Ian Pratt, Co-founder and SVP of Products, Bromium
David Prince, Delivery Director – IT Services, Schillings
Simon Saunders, Management Consultant, Portcullis
John Yeo, Director, SpiderLabs EMEA, Trustwave

Key themes include:

Crossing the capability gap: identifying sensitive data, meeting client expectations, and becoming compliant

Establishing a baseline for the minimum level of information security capabilities in the law firm
Identifying more precisely what information you hold, what data is sensitive, and what data must be prioritised in the security agenda
Understanding what security measures are required by the client in order to maintain a successful business relationship
Becoming ISO27001 accredited and compliant

Protecting against accidents: improving user awareness within and beyond the IT department

Establishing measures to mitigate the risk of accidental and malicious insider threats
Creating better and more flexible security and training awareness programmes
Spreading awareness of data sensitivity in all forms across the business

Mitigating third-party risks: testing, monitoring, and auditing the Cloud and third-party providers

Understanding the depth of a third-party’s security and establishing the extent to which they need to be tested by a law firm
Improving auditing methods for the third-parties, such as pen testing, and ensuring ISO27001 compliance
Examining the risks of moving infrastructure and data to the Cloud, from jurisdictional issues to borders between customers’ data on a host site

Facilitating a secure environment: stopping users from circumventing controls

Utilising real-time log monitoring and alerts to survey user activity
Enabling secure file transfer for large, sensitive documents
Reviewing applications, which allow for information storage in the cloud
Securing your BYOD endpoints