#SenseiSherlock enjoyed a wonderful lunch with Sharon and John’s friend Tina Ayiotis, who shares their love of cybersecurity conversation!
Recently, Sensei’s Sharon Nelson was featured in “Panama Papers Fallout: What If Your Lawyer Gets Hacked?” by Lisa Morgan of InformationWeek. InformationWeek is an online community for business technology professionals which include, thought-leading CIOs, CTOs, IT VPs and managers, along with other IT professionals.
Excerpt: “All the technology in the world can’t protect you from employees who click on things they shouldn’t. And in their defense, attackers now do a lot more advanced reconnaissance. They write well-crafted emails that look legitimate and even reference current cases obtained from public record filings and [the] attorneys of record,” said Sharon Nelson, an attorney and president of digital forensics, information technology, and information security company Sensei Enterprises.
In this episode of The Digital Edge, hosts Sharon Nelson and Jim Calloway talk with The Remsen Group President John Remsen, Jr. about the benefits of creating a firm-wide business plan. John expresses how important it is for law firm leadership to recognize that they are running a business and states that it is difficult to run a successful business without a plan of where you are going. He shares that his research results show that only 40% of midsize firms report that they have a written strategic plan and less than 5% give themselves a positive score on implementing that plan well. Gordon also reveals that 90% of firms with a plan will attribute improved performance in areas like increased cohesiveness, profitability, long term sustainability, and growth to the planning exercise. He then analyzes the top five concerns of midsize firms, like associate development and firm governance, and provides ways that firms can address these concerns. He closes the interview with reasons that older lawyers resist these types of improvements and tips to help law firms start the strategic planning process.
“What Will You Do When Your Law Firm is Breached?” by Sharon Nelson and John Simek was featured recently in the Texas Bar Journal. The Texas Bar Journal is the official publication of the State Bar of Texas and the only legal publication mailed to every member of the Texas Bar.
Excerpt: Note that we did not title this article, “What Will You Do If Your Law Firm Is Breached?” The reason is simple: Experiencing a data breach is not an “if”—it is a “when.” Just ask the IRS or the U.S. Office of Personnel Management, both of which recently suffered data breaches partly due to their sloppy approaches to information security. Lawyers cannot ethically afford to have slipshod security when protecting confidential data.
Excerpt: Law firms can be particularly vulnerable, since court filings are public record. An attacker can easily get the name of the attorney of record and, using his or her name, send a phishing email with a malicious attachment that purports to be an updated complaint from that attorney.
#SenseiSherlock ate a little pizza and visited with Kris Spitler and Karen Cohen as Sharon and John did in-house cybersecurity training for law firm Vanderpool, Frostick & Nishanian.
Excerpt: Attorneys have ethical and common law duties to employ competent and reasonable measures to safeguard information relating to clients. Many attorneys also have contractual and regulatory requirements for security. Attorneys also have ethical and common law duties to notify clients if client data has been breached. Compliance with these duties includes implementing and maintaining comprehensive information security programs, including incident response plans, for law practices of all sizes, from solos to the largest firms. The security programs and response plans should be appropriately scaled to the size of the firm and the sensitivity of the information.
#SenseiSherlock was delighted to share the spotlight with cybersecurity experts Jody Westby and David Bodenheimer who joined Sharon and John for a presentation at the Virginia State Bar Annual Meeting.