Ride the Lightning

Cybersecurity and Future of Law Practice Blog
by Sharon D. Nelson Esq., President of Sensei Enterprises, Inc.

Guide for Law Firms Selecting A Cloud-Based Vendor

April 5, 2018

The National Law Review recently carried an article about how law firms should go about selecting a cloud-based vendor.

Here are some of the recommendations:

One of the best ways to vet a vendor is to ask for references of businesses similar to yours who use their platform. If the vendor doesn't have any, that's a warning flag.

Whether you're part of a legal team for a major corporation or you're a one-person operation, it is critical that you outline best practices and protocols that every vendor must meet. Some of the larger clouds don't negotiate, but many cloud providers will. If you can, bring in a security consultant to help write requirements documentation. You can also gather data from similar businesses through references and networking to ensure that you have a comprehensive understanding of what legal security requirements are.

Be wary of possible snake oil in the vendor's sales pitch.

Here are some questions that the article suggests you ask:

Where is the data stored?
What level of vetting do the company's employees go through?
Is data encrypted every step of the way?
Are all systems being kept up to date with security patches? How frequently?
Does the vendor sub-contract any work?
How is the company structured? Who is legally liable for security breaches?
How does the vendor's software integrate with your current suite of tools?
Does the vendor's software allow you to customize the security roles for your firm without having to choose from predetermined options?

There are additional questions directed toward those seeing a cloud-based case management system or client portal. I could probably add many more questions to ask, but then your eyes would glaze over. Engaging a cloud provider is a major event – it might be wise to bring in an expert to offer guidance if your budget permits it. And read those terms of service as well as any contract you sign – that's where all the devilish details are!!!

E-mail: Phone: 703-359-0700
Digital Forensics/Information Security/Information Technology
https://www.senseient.com
https://twitter.com/sharonnelsonesq
https://www.linkedin.com/in/sharondnelson
https://amazon.com/author/sharonnelson

Sharon D. Nelson, Esq.
President

Subscribe in a Reader

Cookie	Duration	Description
cookielawinfo-checbox-analytics	11 months	This cookie is set by GDPR Cookie Consent plugin. The cookie is used to store the user consent for the cookies in the category "Analytics".
cookielawinfo-checbox-functional	11 months	The cookie is set by GDPR cookie consent to record the user consent for the cookies in the category "Functional".
cookielawinfo-checbox-others	11 months	This cookie is set by GDPR Cookie Consent plugin. The cookie is used to store the user consent for the cookies in the category "Other.
cookielawinfo-checkbox-necessary	11 months	This cookie is set by GDPR Cookie Consent plugin. The cookies is used to store the user consent for the cookies in the category "Necessary".
cookielawinfo-checkbox-performance	11 months	This cookie is set by GDPR Cookie Consent plugin. The cookie is used to store the user consent for the cookies in the category "Performance".
viewed_cookie_policy	11 months	The cookie is set by the GDPR Cookie Consent plugin and is used to store whether or not user has consented to the use of cookies. It does not store any personal data.

Ride the Lightning

Guide for Law Firms Selecting A Cloud-Based Vendor

Subscribe for More!

Recent Posts

Listen to the Podcast

Disclaimer