Surviving a Law Firm Information Security Audit - CLE, Continuing Legal Education - ALI
Surviving a Law Firm Information Security Audit
  • Cosponsored with the ABA Law Practice Division
Register Now!

Available Online: Online CLE | MP3 Audio Files | Coursebook

Why You Should Attend


As law firms continue to face growing threats to information security, they are increasingly undergoing security audits – either voluntarily or as required by clients. These security audits entail in-depth evaluations of firms’ processes and computing infrastructure to measure compliance with selected security standards and industry best practices.

This critical CLE program on how to survive a law firm data security audit will explore the need for a comprehensive information security program, the security audit process, and how to survive an audit.

Back to Top

What You Will Learn


Discussion will include:

understanding that audit findings will have to be addressed

selecting audit standards and auditors (where the law firm has a choice)

basic audits, vulnerability analysis, and penetration testing

preparing for an audit

how auditors operate

Have a question for the faculty? This interactive seminar will give you the opportunity to submit questions to the faculty before and/or during the program. Send your questions to

Back to Top

Who Should Attend

This accredited continuing legal education program will benefit attorneys and professionals engaged in law firm management who want to make sure they are taking adequate measures to protect data.

Back to Top











David G. Ries, Clark Hill Thorp Reed, LLP, Pittsburgh, PA  

David G. Ries is a partner at Thorp Reed & Armstrong, where he focuses his practice in the areas of environmental, commercial, and technology litigation. He has used computers in his practice since the early 1980s and chairs the firm's E-Discovery and Records Management Group. Mr. Ries has represented clients in a variety of technology litigation matters, including major systems implementation cases, and advised clients on a number of technology law issues such as information security and privacy compliance, hardware and software agreements, electronic contracting, and response to data breaches. He has more than 35 years of experience in these areas and has frequently lectured and written concerning them for legal, educational, and professional groups.









John W. Simek, Sensei Enterprises, Inc., Fairfax, VA 

John W. Simek is the Vice President of Sensei Enterprises, Inc. He is an EnCase Certified Examiner (EnCE) and a nationally known testifying expert in the area of computer forensics. Mr. Simek has in-depth experience with network troubleshooting, hardware and software implementations, systems integration, and logistical and financial expertise in a wide range of computer engineering designs and solutions. He has an extensive knowledge of multi-protocol environments and a diverse range of networking technologies. Mr. Simek provides computer forensics, electronic discovery, and information technology support to almost 250 law firms, legal entities, and businesses, and is a frequent speaker on legal technology and security issues.


Back to Top

Program Schedule

All Times Eastern

1:00 p.m.  Program Begins

2:30 p.m.  Adjournment


Total 60-minute hours of instruction: 1.5; total 50-minute hours, 1.8.

Level of Instruction: Basic to Intermediate

Click Here for MCLE Credit Information

Back to Top

Here's what registrants have said about this course:

Very valuable handout materials.

Very nicely done.

Most helpful.


Back to Top


Eastern 1:00 pm – 2:30 pm
Central 12:00 pm –1:30 pm
Mountain 11:00 am – 12:30 pm
Pacific 10:00 am – 11:30 am
Alaska 9:00 am – 10:30 am
Hawaii 8:00 am – 9:30 am

Back to Top



Course Details

Real-Time Customer Service