Tuesday, June 11, 2013

More on Information Security -

Industry expert Jeffrey Brandt, a former AmLaw 100 CIO and CKO with 25+ years experience in these matters recently weighed in on current information risk trends with a two part piece: "Why Law Firm Security Makes Good Business Sense [part 1] [part2]" --
  • "I will be the first to admit that getting senior law firm management to develop a security conscious mindset can be tough. Many leaders have the attitude that 'it won't happen to me.' It is often seen as costly insurance or an unnecessary expense. Worse still, it’s seen as useless, as an impedance to work, an unwanted inconvenience. But times are changing. Security and awareness must change too."
  • "Recognizing the value and importance of security, corporations are requiring more answers from their outside counsel via security audits. Brief and sporadic to begin with, audits have become more frequent, more common and in some instances, much more complex. The first client security audit I ever answered was back in the early 1990s. That audit was nothing compared to the ones of today."
  • "Some firms like White & Case and Bond Pearce have achieved ISO 27001 certification and now use that as an aid in answering these complex audits. They also use it in their marketing, as a differentiator."
  • "Law firms, with the deserved reputation as corporations 'weakest link,' certainly have a lot of catching up to do, but I am happy to report that there are signs that the security winds continue to shift. More and more when I talk to CIOs, the topic of security is one that they bring up."
  • "The LTN/American Lawyer Law Firm Chief Information & Technology Officers Forum earlier this year put it well, 'Security needs to stop being considered a business impediment and start being viewed as a sound business decision.'"
  • "Good security is a sound business decision. Partner convenience should not always trump security. The winds of change are here. Will you join the movement or just end up as one of the statistics?"

No comments:

Post a Comment