As law firms continue to face growing threats to information security, they are increasingly undergoing security audits – either voluntarily or as required by clients. These security audits entail in-depth evaluations of firms’ processes and computing infrastructure to measure compliance with selected security standards and industry best practices.
This critical CLE program on how to survive a law firm data security audit will explore the need for a comprehensive information security program, the security audit process, and how to survive an audit.
What You Will Learn
Discussion will include:
understanding that audit findings will have to be addressed
selecting audit standards and auditors (where the law firm has a choice)
basic audits, vulnerability analysis, and penetration testing
preparing for an audit
how auditors operate
Have a question for the faculty? This interactive seminar will give you the opportunity to submit questions to the faculty before and/or during the program. Send your questions to email@example.com.
Who Should Attend
This accredited continuing legal education program will benefit attorneys and professionals engaged in law firm management who want to make sure they are taking adequate measures to protect data.
David G. Ries is a partner at Thorp Reed & Armstrong, where he focuses his practice in the areas of environmental, commercial, and technology litigation. He has used computers in his practice since the early 1980s and chairs the firm's E-Discovery and Records Management Group. Mr. Ries has represented clients in a variety of technology litigation matters, including major systems implementation cases, and advised clients on a number of technology law issues such as information security and privacy compliance, hardware and software agreements, electronic contracting, and response to data breaches. He has more than 35 years of experience in these areas and has frequently lectured and written concerning them for legal, educational, and professional groups.
John W. Simek is the Vice President of Sensei Enterprises, Inc. He is an EnCase Certified Examiner (EnCE) and a nationally known testifying expert in the area of computer forensics. Mr. Simek has in-depth experience with network troubleshooting, hardware and software implementations, systems integration, and logistical and financial expertise in a wide range of computer engineering designs and solutions. He has an extensive knowledge of multi-protocol environments and a diverse range of networking technologies. Mr. Simek provides computer forensics, electronic discovery, and information technology support to almost 250 law firms, legal entities, and businesses, and is a frequent speaker on legal technology and security issues.
All Times Eastern
1:00 p.m. Program Begins
2:30 p.m. Adjournment
Total 60-minute hours of instruction: 1.5; total 50-minute hours, 1.8.