Outsourcing cyber: short-term gain for long-term pain?

12th Securing The Law Firm
London, 18th September 2019

 

Resilience for realists:
How careful outsourcing and proportionate in-house resourcing can deliver better cybersecurity

 

Like other industries, the legal sector is finding out that digital disruption cuts many ways.

Technology is being used both to deliver efficiencies in the current business model, and to begin the journey towards a new one. As a result, cybersecurity itself is a critical component of those new business initiatives: digitalisation means exposure and vulnerability.

Because many firms are building security capabilities almost from scratch, they have a one-off opportunity to choose the structure of their cybersecurity effort, and in particular to look at the role of outsourcing.

For many firms, a judicious mix of off-premises technologies with a reduced in-house function makes far more sense than trying to resource a fully-featured cybersecurity department.

In this model, everything is up for re-evaluation.

What is the role of the CISO? How many people are needed in the security team and what are their functions? A MSSP is probably needed, so who evaluates solution providers and what should they be looking for?

Do they need SOC-as-a-service? What about managed SIEM-as-a-service?

And, since most digital transformation involves the Cloud, how much in-house Cloud expertise is needed, how do firms maintain Cloud visibility, and how should they evaluate CASBs?

The in-house expertise to build and manage this kind of hybrid cybersecurity apparatus is considerable. So what does it look like, and what is the best way forward?

Securing The Law Firm will cover these and other key subjects for its audience of professionals tasked with safeguarding digital assets and sensitive data. There will be real-life case studies, strategic talks and technical break-out sessions from security teams behind some of the world's most admired brands, who know, just like you, that security is now more important to business than ever.

  • Bridging the skills gap

    • Taking responsibility at the top level
    • Cybersecurity as a core commitment
    • Hiring the right skills, buying the right solutions
    • Balancing on-premises and outsourcing
  • Defining your architecture

    • The pros and cons of MSSPs and MDRs
    • Which organisations really need a SOC? Does it need to be in-house or does SOC-as-a-service do the job?
    • Securing the Cloud: is a CASB right for you?
    • Security automation and orchestration: handling SIEM, SOAR, SIRP and TIP
    • Outsourcing individual services: IP intelligence, endpoint security, AI, pentesting and more
  • Keep the customer satisfied

    • Clients are increasingly demanding proof that key suppliers such as law firms are implementing appropriate cybersecurity measures
    • What constitutes 'appropriate cybersecurity measures' and how do you demonstrate that you're taking them?
    • Sustainability and resilience are just as important as how secure you are right now. How can you achieve these goals?
  • Securing diffuse networks

    • Law firms are cross-border but decentralised. What's the best way to secure a siloed organisation and its network?
    • Remote working and BYOD - how can the ever-expanding perimeter be secured?
    • Legal transactions involve third-parties in a big way, with firms acting as legal project managers as much as sole legal advisers. Are they the weak link in your security?
  • Compliance with new regulations

    • Cybersecurity is going mandatory: voluntary commercial codes are not enough
    • Regulators want companies to demonstrate true cybersecurity as well as basic compliance
    • What does this mean for the CISO and what is the future of security regulation?
  • Training and retaining key cyber staff

    • Getting top-down cybersecurity buy-in requires training and education. What's the best way to get through?
    • If law firms don't prove they value cybersecurity staff and give them the responsibility they need, they will leave. How do you keep your team together?
    • Many organisations can't afford in-house SOCs or security teams big enough to counter threats effectively. What can you outsource, and does it really solve the problem?

Who attends

Job titles

Chief Information Officer
Global I.T. Risk Manager
Senior Risk & Security Manager
Senior Cyber Security Manager
CISO
CIO & IT Director
VP Cyper Defense Response
Head of Digital Risk Management and Compliance
Partner - Head of Data Protection
CISO
Senior Information Security Executive
IT Infrastructure and Operations Manager
Head of IT (UKMEA)
I.T. Manager
Legal Technology Co-ordinator
In-house Privacy and Data Protection Lawyer
Senior Manager IT Security
Senior Auditor
In-House Counsel
Manager IT Security and Compliance
Head of Cyber, Partner
Enterprise Architect
Head of Information Security
International Head of Operational Risk
Information Security & Business Continuity Manager
Head of IT Security
IT Director - EMEA
Director de Sistemas de Información
IT Enterprise Architecture Manager
Head of IT Europe & ME
Technical Solutions Architect
I.T. Director EMEA
Cyber Security Manager
Senior Security Risk Analyst
IT Security and Governance Manager
Head of IT, UK, EMEA & Asia
Information Security & Compliance Officer
Head of Information Security
Director of I.T. & Knowledge Management
Information Governance, Senior Manager
IT Director
Global IT Operations & Security Manager
Chief Information Security Officer (CISO)
Deputy CIO / CISO
Global Business and Information Risk Manager - Legal
Global Head of I.T. Controls
Head of Commercial & I.T. Risk
Head of IT Security & BCM Leader
Global Director of I.T. Risk & Information Security
Global Data Privacy Officer
Information Security & Risk Manager EMEA
Head of IS & DP
Risk And Compliance Manager
Security & Data Manager
Manager of Technology
Compliance Manager & Data Protection Officer
Head of Information Systems and Technology
I.T. Security Manager
Senior Information Security Engineer
Director of Technology Compliance
Senior Risk Advisor - Privacy & Data Protection
Senior Information Security Manager
Chief Operating Officer
Lead Information Security Officer
Partner & Director of Risk Management
In-House Counsel
Chief Information Security Officer
Head of IT
Director of Global Infrastructure
Global Information Security Risk Manager
Head of Global Information Security
Global I.T. Security Manager
Head of Risk - Associate Director
Head of I.T. Operations & Security
Information Security / Risk Manager
Director of I.T. Security
Senior Manager, IT Security, UK, EMEA & Asia
Senior Legal Counsel
Director, Global Enterprise Security Architect
IT Solution Delivery Manager
IT Operations & Security Manager
Head of Compliance & Risk Management
Head of IT and Projects
Global I.T. Director
In-House Lawyer
Regional Information Security Manager - EMEA & ASIA
CIO
Global Director of Information Technology
Head of Supply Chain Information Risk
Senior IT Security and Compliance Analyst
I.T. Security & Networks Team Leader
Risk & Compliance Partner
Regional IT Manager (Europe)
Data Privacy Manager
Senior Enterprise Architect
Group Head of Content Protection, Cyber Security & Investigations
Risk & Business Continuity Manager
Operations and IT Director
Data Protection/Privacy Manager
Information Security Compliance Manager
CISO
Global Information Security Manager
Head of IT Operations
Senior Information Security Officer
Global Director of IT Risk & Security
CISO
Risk & Compliance Executive
Head of Network & Infrastructure
Infrastructure & Network Security Specialist
IT Risk & Compliance Analyst
National Head of Counter Fraud
Global Security Manager
Group Head of Information Risk and Security
Senior Manager of Cyber Security
Group Security Lead
IT Director
Head of I.T. Security
Vice President, Information Security
Director of Technology - Europe
Head of Technology, Cyber & Data
GDPR Manager
Global CISO
Head of Compliance
Chief Information Security & Technology Officer
CTO
EMEA CIO
CISO, Head of Cyber Security and Data Protection Officer
Information Security Manager
General Counsel
Global Business Information Risk Officer (BIRO) - Group Legal
Risk and Compliance Analyst
Partner
Head of Systems and Infrastructure
Director of Compliance and Data Protection - Europe
Head of Data Protection & Cyber Security Group
Director of Technology & Information
Global Business Continuity Manager
Corporate Security Awareness Transformation Manager
European I.T. Manager
Director of IT
Head of I.T.
Chief Technology Officer
Head of IT
Global Security Engineer
Head of Information Security
Global Infrastructure & Security Manager
Head of Cyber Security
I.T. Infrastructure Manager
European Privacy Counsel
IT Security Operations Manager

Companies

23 Essex Street
11 South Square
Boodle Hatfield
Slaughter and May
Serle Court
Boyes Turner
Howard Kennedy
Mills & Reeve
Phillips Solicitors
Covington & Burling
Lester Aldridge
Anthony Gold
Weightmans
Stewarts Law
Kemp Little
FBI
5 Paper Buildings
Ropes & Gray
Watson Farley & Williams
Withers
Bristows
Taylor Vinters
Sacker & Partners
Osborne Clarke
Carter Perry Bailey
Dehns
Payne Hicks Beach
Kennedys
Seddons
Latham & Watkins
Kerman and Co
King & Wood Mallesons
Lee Bolton Monier-Williams
Stephenson Harwood
Charles Russell Speechlys
Russell-Cooke
HM Prison Service
Gannons Solicitors
Reddie & Grose
4 New Square
Wedlake Bell
DAC Beachcroft
Fladgate
Edwards Wildman Palmer
Travers Smith
The Bar Council
Lewis Silkin
Kingsley Napley
Mayer Brown
Linklaters
Wellers Law Group
Michelmores
Keystone Law
Horwich Farrelly
Trowers & Hamlins
Dentons
Howes Percival
Ashfords
Dawson Cornwell
GE Capital
Browne Jacobson
Taylor Walton Solicitors
iLaw
Bentleys Stokes & Lowless
3 Verulam Buildings
Keoghs
Foot Anstey
Womble Bond Dickinson
Squire Patton Boggs
Joseph Hage Aaronson
Clarke Willmott
Cripps
Baker McKenzie
TLT
Holman Fenwick Willan
Arnold & Porter Kaye Scholer
Blake Morgan
Thrings
DLA Piper
Mathys & Squire
Carter Bells
Uría Menéndez
Hogan Lovells International
Laura Devine Solicitors
Arendt & Medernach
Vodafone
Magrath
DMH Stallard
Taylor Wessing
Simons Muirhead & Burton
Freeths
Orrick Herrington & Sutcliffe
ticketmaster
Hiscox
Burness Paull
DWF
Clifford Chance
Mishcon De Reya
Asda
Forsters
Bindmans
Pinsent Masons
Ince & Co
Gateley Plc
Glovers
Doyle Clayton
Simmons & Simmons
Bryan Cave Leighton Paisner
Herbert Smith Freehills
Ward Hadaway
Penningtons Manches
Reed Smith
Laytons Solicitors
HSBC
Milbank
Macfarlanes
Eversheds Sutherland
Mewburn Ellis
Memery Crystal
Beale & Company Solicitors
Kilburn & Strode
McGuireWoods
Clyde & Co
Ashurst
Colman Coyle
Allen & Overy
Cloth Fair Chambers
Hengeler Mueller
Fieldfisher
Irwin Mitchell
Bevan Brittan
Bird & Bird
Fountain Court Chambers
Shoosmiths
Crown Prosecution Service
Wiggin
Boult Wade Tennant
Littleton Chambers
Carpmaels & Ransford
Freshfields Bruckhaus Deringer
Addleshaw Goddard
Norton Rose Fulbright
Brodies
Sidley Austin
Cushman & Wakefield
Fragomen
Gilchrist Solicitors
Farrer & Co
Edwin Coe
Simkins

Industries

Barristers Chambers
Legal
Legal
Legal
Banking
Insurance
Legal
Insurance
Legal
Legal
Legal
Banking
Legal
Legal
Legal
Automobiles/Parts
Legal
Legal
Barristers Chambers
Legal
Legal
Legal
Legal
Legal
Legal
Legal
Legal
Legal
Legal
Legal
Legal
Legal
Legal
Legal
Legal
Legal
Legal
Legal
Legal
Legal
Insurance
Legal
Legal
Legal
Legal
Legal
Legal
Legal
Legal
Legal
Legal
Legal
Legal
Legal
Legal
Legal
Legal
Legal
Legal
Oil/Gas
Legal
Legal
Legal
Legal
Legal
Legal
Legal
Barristers Chambers
Legal
Legal
Legal
Legal
Legal
Legal
Legal
Banking
Legal
Legal
Legal
Legal
Legal
Barristers Chambers
Legal
Legal
Legal
Legal
Legal
Legal
Legal
Legal
Legal
Legal
Legal
Legal
Legal
Banking
Legal
Legal
Legal
Legal
Legal
Legal
Legal
Legal
Legal
Legal
Legal
Legal
Legal
Legal


Venue

America Square - Cavendish Venues

america

Location:
America Square - Cavendish Venues
1 America Square, 17 Crosswall, London EC3N 2LB
Telephone: +44 (0)20 7706 7700

Directions:
Please click here