Securing the Law Firm

SECURING THE LAW FIRM
5th July 2022 • Park Plaza Victoria, London, UK

Cybersecurity and privacy for virtual working processes

For legal firms, remote and hybrid working is here to stay. Are we really ready?

 

Costs versus risks – a difficult conversation?

In its annual top-100 survey of UK law firms , PwC said 90% were “extremely or somewhat concerned” about the impact of cyber threats on their ability to achieve their ambitions over the next 12 months, even though only 4% had experienced a ransomware attack – the commonest attack type – and none of the firms involved were in the top 50.

In three-quarters of cases, cyber-attacks were the result of “unintentional actions taken by staff” rather than “malicious actions by staff” (2%). In almost all the other cases, firms said they did not know what caused the attack.

“The increase in remote working as a result of Covid-19 has made it increasingly complex to understand which employees pose an enhanced threat,” PwC said. “Law firm cyber leaders should gain a better understanding of human behaviour demonstrated by their employees to make a difference to security culture.”

Most law firms will have had some level of remote working before the pandemic and many say that after the initial shock of extreme lockdowns the adaptations they required to security processes were reasonably straightforward and have been implemented. But as we move into a period in which a significant proportion of employees prefer to work at least partly at home, is it really true that inherent cybersecurity risk has stayed the same?

At the same time though, the PwC report incidentally highlights the relatively low level of realised cyber-risk relative to the fear of attack. This gap creates a difficult problem for senior management. A recently revealed cyberattack on the UK’s Foreign, Commonwealth & Development Office (FCDO) cost £467,325.60 for “business analyst and technical architect support to analyse an authority cyber security incident” that concluded January 12, 2022.

For most organisations spending that amount of money on one incident would be at best annoying and at worst unaffordable, particularly if they were already paying for a security stack, external pen testing, consultancy and everything else that goes with maintaining effective cybersecurity.

So if law firms are avoiding material attacks with current levels of spending, what is the evidence that they need to do more?

Securing the Law Firm will look at how we all need a new kind of security. Join our real-life case studies and in-depth technical sessions from the
security and privacy teams at some of the world’s most admired brands.

  • Behavioural analytics

    • If single point solutions are not the answer, then how about a holistic approach?
    • Instead of treating every threat type and actor or network anomaly as a separate variable or alert, step back and look at the whole landscape and apply behavioural analytics.
    • Is this a viable methodology?
  • Is ransomware the canary in the coal mine?

    • Ransomware tests every part of your cybersecurity infrastructure from awareness to endpoint protection to patching to phishing defences.
    • Some attacks are sophisticated, but most rely on traditional methods and vectors.
    • So why is it so hard to beat them? Is AI or zero trust or something else the answer?
  • Digging deeper into hybrid workplace security

    • Are we getting complacent about mobile and remote workers?
    • Remote employees use more devices in more places compared to their in-office counterparts. Security risks have risen.
    • So how can CISOs prove that they are on top of those risks?
  • Building better Cloud security

    • Migrating to the cloud is a priority. But, if not properly managed, cloud migrations result in extra complexity and risk.
    • So how can firms efficiently assess cloud readiness, plan and execute migrations and establish comprehensive cloud governance?
    • Can you help companies transition smoothly and securely to the Cloud?
  • From threat/security to risk/resilience

    • If we start with real business risks, then not only do we get real engagement from the business and the Board, we create a framework for prioritizing cybersecurity, resilience, incident response and BCP spend.
    • We avoid an endless race to build and rebuild solution stacks. 
    • What does resilience really look like?
  • Can zero trust be done?

    • Zero Trust/ZTNA/SASE - they promise solutions to the key problems CISOs face today.
    • But how realistic are they? Do they take into account existing legacy technology, and the ways in which real companies actually do business day-to-day?
    • Can you explain how a real-world implementation works?

Who attends

Job titles

Chief Information Officer
Global I.T. Risk Manager
Senior Risk & Security Manager
Senior Cyber Security Manager
CISO
CIO & IT Director
VP Cyper Defense Response
Head of Digital Risk Management and Compliance
Partner - Head of Data Protection
CISO
Senior Information Security Executive
IT Infrastructure and Operations Manager
Head of IT (UKMEA)
I.T. Manager
Legal Technology Co-ordinator
In-house Privacy and Data Protection Lawyer
Senior Manager IT Security
Senior Auditor
In-House Counsel
Manager IT Security and Compliance
Head of Cyber, Partner
Enterprise Architect
Head of Information Security
International Head of Operational Risk
Information Security & Business Continuity Manager
Head of IT Security
IT Director - EMEA
Director de Sistemas de Información
IT Enterprise Architecture Manager
Head of IT Europe & ME
Technical Solutions Architect
I.T. Director EMEA
Cyber Security Manager
Senior Security Risk Analyst
IT Security and Governance Manager
Head of IT, UK, EMEA & Asia
Information Security & Compliance Officer
Head of Information Security
Director of I.T. & Knowledge Management
Information Governance, Senior Manager
IT Director
Global IT Operations & Security Manager
Chief Information Security Officer (CISO)
Deputy CIO / CISO
Global Business and Information Risk Manager - Legal
Global Head of I.T. Controls
Head of Commercial & I.T. Risk
Head of IT Security & BCM Leader
Global Director of I.T. Risk & Information Security
Global Data Privacy Officer
Information Security & Risk Manager EMEA
Head of IS & DP
Risk And Compliance Manager
Security & Data Manager
Manager of Technology
Compliance Manager & Data Protection Officer
Head of Information Systems and Technology
I.T. Security Manager
Senior Information Security Engineer
Director of Technology Compliance
Senior Risk Advisor - Privacy & Data Protection
Senior Information Security Manager
Chief Operating Officer
Lead Information Security Officer
Partner & Director of Risk Management
In-House Counsel
Chief Information Security Officer
Head of IT
Director of Global Infrastructure
Global Information Security Risk Manager
Head of Global Information Security
Global I.T. Security Manager
Head of Risk - Associate Director
Head of I.T. Operations & Security
Information Security / Risk Manager
Director of I.T. Security
Senior Manager, IT Security, UK, EMEA & Asia
Senior Legal Counsel
Director, Global Enterprise Security Architect
IT Solution Delivery Manager
IT Operations & Security Manager
Head of Compliance & Risk Management
Head of IT and Projects
Global I.T. Director
In-House Lawyer
Regional Information Security Manager - EMEA & ASIA
CIO
Global Director of Information Technology
Head of Supply Chain Information Risk
Senior IT Security and Compliance Analyst
I.T. Security & Networks Team Leader
Risk & Compliance Partner
Regional IT Manager (Europe)
Data Privacy Manager
Senior Enterprise Architect
Group Head of Content Protection, Cyber Security & Investigations
Risk & Business Continuity Manager
Operations and IT Director
Data Protection/Privacy Manager
Information Security Compliance Manager
CISO
Global Information Security Manager
Head of IT Operations
Senior Information Security Officer
Global Director of IT Risk & Security
CISO
Risk & Compliance Executive
Head of Network & Infrastructure
Infrastructure & Network Security Specialist
IT Risk & Compliance Analyst
National Head of Counter Fraud
Global Security Manager
Group Head of Information Risk and Security
Senior Manager of Cyber Security
Group Security Lead
IT Director
Head of I.T. Security
Vice President, Information Security
Director of Technology - Europe
Head of Technology, Cyber & Data
GDPR Manager
Global CISO
Head of Compliance
Chief Information Security & Technology Officer
CTO
EMEA CIO
CISO, Head of Cyber Security and Data Protection Officer
Information Security Manager
General Counsel
Global Business Information Risk Officer (BIRO) - Group Legal
Risk and Compliance Analyst
Partner
Head of Systems and Infrastructure
Director of Compliance and Data Protection - Europe
Head of Data Protection & Cyber Security Group
Director of Technology & Information
Global Business Continuity Manager
Corporate Security Awareness Transformation Manager
European I.T. Manager
Director of IT
Head of I.T.
Chief Technology Officer
Head of IT
Global Security Engineer
Head of Information Security
Global Infrastructure & Security Manager
Head of Cyber Security
I.T. Infrastructure Manager
European Privacy Counsel
IT Security Operations Manager

Organisations

23 Essex Street
11 South Square
Boodle Hatfield
Slaughter and May
Serle Court
Boyes Turner
Howard Kennedy
Mills & Reeve
Phillips Solicitors
Covington & Burling
Lester Aldridge
Anthony Gold
Weightmans
Stewarts Law
Kemp Little
FBI
5 Paper Buildings
Ropes & Gray
Watson Farley & Williams
Withers
Bristows
Taylor Vinters
Sacker & Partners
Osborne Clarke
Carter Perry Bailey
Dehns
Payne Hicks Beach
Kennedys
Seddons
Latham & Watkins
Kerman and Co
King & Wood Mallesons
Lee Bolton Monier-Williams
Stephenson Harwood
Charles Russell Speechlys
Russell-Cooke
HM Prison Service
Gannons Solicitors
Reddie & Grose
4 New Square
Wedlake Bell
DAC Beachcroft
Fladgate
Edwards Wildman Palmer
Travers Smith
The Bar Council
Lewis Silkin
Kingsley Napley
Mayer Brown
Linklaters
Wellers Law Group
Michelmores
Keystone Law
Horwich Farrelly
Trowers & Hamlins
Dentons
Howes Percival
Ashfords
Dawson Cornwell
GE Capital
Browne Jacobson
Taylor Walton Solicitors
iLaw
Bentleys Stokes & Lowless
3 Verulam Buildings
Keoghs
Foot Anstey
Womble Bond Dickinson
Squire Patton Boggs
Joseph Hage Aaronson
Clarke Willmott
Cripps
Baker McKenzie
TLT
Holman Fenwick Willan
Arnold & Porter Kaye Scholer
Blake Morgan
Thrings
DLA Piper
Mathys & Squire
Carter Bells
Uría Menéndez
Hogan Lovells International
Laura Devine Solicitors
Arendt & Medernach
Vodafone
Magrath
DMH Stallard
Taylor Wessing
Simons Muirhead & Burton
Freeths
Orrick Herrington & Sutcliffe
ticketmaster
Hiscox
Burness Paull
DWF
Clifford Chance
Mishcon De Reya
Asda
Forsters
Bindmans
Pinsent Masons
Ince & Co
Gateley Plc
Glovers
Doyle Clayton
Simmons & Simmons
Bryan Cave Leighton Paisner
Herbert Smith Freehills
Ward Hadaway
Penningtons Manches
Reed Smith
Laytons Solicitors
HSBC
Milbank
Macfarlanes
Eversheds Sutherland
Mewburn Ellis
Memery Crystal
Beale & Company Solicitors
Kilburn & Strode
McGuireWoods
Clyde & Co
Ashurst
Colman Coyle
Allen & Overy
Cloth Fair Chambers
Hengeler Mueller
Fieldfisher
Irwin Mitchell
Bevan Brittan
Bird & Bird
Fountain Court Chambers
Shoosmiths
Crown Prosecution Service
Wiggin
Boult Wade Tennant
Littleton Chambers
Carpmaels & Ransford
Freshfields Bruckhaus Deringer
Addleshaw Goddard
Norton Rose Fulbright
Brodies
Sidley Austin
Cushman & Wakefield
Fragomen
Gilchrist Solicitors
Farrer & Co
Edwin Coe
Simkins

Industries

Barristers Chambers
Legal
Legal
Legal
Banking
Insurance
Legal
Insurance
Legal
Legal
Legal
Banking
Legal
Legal
Legal
Automobiles/Parts
Legal
Legal
Barristers Chambers
Legal
Legal
Legal
Legal
Legal
Legal
Legal
Legal
Legal
Legal
Legal
Legal
Legal
Legal
Legal
Legal
Legal
Legal
Legal
Legal
Legal
Insurance
Legal
Legal
Legal
Legal
Legal
Legal
Legal
Legal
Legal
Legal
Legal
Legal
Legal
Legal
Legal
Legal
Legal
Legal
Oil/Gas
Legal
Legal
Legal
Legal
Legal
Legal
Legal
Barristers Chambers
Legal
Legal
Legal
Legal
Legal
Legal
Legal
Banking
Legal
Legal
Legal
Legal
Legal
Barristers Chambers
Legal
Legal
Legal
Legal
Legal
Legal
Legal
Legal
Legal
Legal
Legal
Legal
Legal
Banking
Legal
Legal
Legal
Legal
Legal
Legal
Legal
Legal
Legal
Legal
Legal
Legal
Legal
Legal


Venue

Park Plaza Victoria, London

vpp

Location:
Park Plaza Victoria
239 Vauxhall Bridge Road, London, UK, SW1V 1EQ
Telephone: 0844 415 6752
 

Directions:
Please click here