Call Us 866.940.1101 ☰ ˟
866.940.1101
Logo
  • Home
  • About Us
    • About Us
    • Employee Directory
    • Partners Page
    • Event Calendar
    • Refer a Friend
  • Get A Quote
  • Products
    • Lawyers Malpractice Insurance
    • Professional Liability Coverage For Attorneys
    • Accountants Professional Liability
    • Dentist Malpractice Insurance
    • Business Owners Policy
    • Cyber Liability Insurance
    • Workers Compensation Insurance
    • Title Agents E&O Insurance
    • Paralegal Malpractice Insurance
  • Testimonials
  • Common Terms
    • Common Terms
    • Frequently Asked Questions
  • Blog
  • Contact
  • Areas We Serve
    • Grand Rapids, MI
    • Detroit, MI
    • Lansing, MI
    • Kalamazoo, MI
Home > Blog > 6 Steps to Better Cyber Security
MONDAY, NOVEMBER 19, 2018

6 Steps to Better Cyber Security

Cyber SecurityLaw firms are starting to see clients auditing their security practices, controls and technology.   Many clients that are concerned about data security audit their law firm’s information technology services and infrastructure. Some firms struggle to comply with client expectations.  Client audits vary from a couple of pages to detailed service contracts.   Clients are starting to realize that their weakest security link just may be their law firm.

Here are the 6 items that Law Firms need to be concerned with:

1.       Two Factor Authentication

As law firms utilize mobile devices and remote access with increasing frequency, Two Factor Authentication (2FA) has become mandatory. Some clients require mandatory controls to ensure that two factors of authentication are employed. With two factors of authentication in place and all Active Directory accounts are restricted; the law firm immediately experiences a dramatic increase in security.

 

2.       Encryption

Common practice with on-premises servers is to default operating systems and file systems not to encrypt data. While best practices have recently employed the same in transit data encryption using Secure Socket Layer (SSL for encrypting data at rest.

 

3.       Data Loss Prevention

Data Loss Prevention (DLP) controls eliminate risk associated with data being accidentally or deliberately disclosed, typically via email or removal media. With cell phones and USB thumb drives common systems must be employed to deliberately monitor outbound email activity and to lock down user access to USB ports/keys, remote or external hard disks and other removable media.

 

4.       Vulnerability Scans

 

Technology environments are constantly changing. Processes associated with adding and removing hardware, applications require law firm networks to constantly adapt. New opportunities for security vulnerabilities continually arise. Ongoing, recurring vulnerability scans and even ethical hacks employed by third-party specialists to discover open ports, applications and potential threats before they become a problem are critical.

 

5.       Backup & Disaster Recovery

 

Backup and disaster recovery processes are required to protect law firms from data loss. Without them, a natural or manmade disaster could cause a law firm to lose client information. Cloud data storage helps prevent the loss of data that could result from relying upon on-premises backups. It can speed recovery from security breaches by allowing instant remote access to replicated applications and data.

 

6.       Security Awareness Training

 

With humans as your weakest link, key security procedures may be forgotten and bypassed, or change controls misunderstood. This has the potential to lead to a security breach. Law firm staff should be trained about the firm’s security practices and expectations in protecting firm and client data from unauthorized disclosure.

Clients that for example deal with medical information demand that law firms employ appropriate security practices to protect their HIPPA data, confidentiality and relationship.  Without the appropriate controls these clients will just move on to another law firm that provides the data security they require.

Posted 11:00 AM

Tags: legal liability, attorney malpractice insurance, lawyers professional liability insurance, attorney malpractice, cyber security
Share |


No Comments


Post a Comment
Required
Required (Not Displayed)
Required


All comments are moderated and stripped of HTML.

NOTICE: This blog and website are made available by the publisher for educational and informational purposes only. It is not be used as a substitute for competent insurance, legal, or tax advice from a licensed professional in your state. By using this blog site you understand that there is no broker client relationship between you and the blog and website publisher.
Blog Archive
  • 2023
  • 2022
  • 2021
  • 2020
  • 2019
  • 2018
  • 2017
  • 2016
  • 2015
  • 2013
  • 2011

  • lawyers professional liability insurance(429)
  • attorney malpractice insurance(404)
  • attorney malpractice(337)
  • legal malpractice(225)
  • legal liability(134)
  • cyber insurance(107)
  • data breach(93)
  • ethics(87)
  • erp(58)
  • malpractice insurance(56)
  • claims(39)
  • title agency e&o(36)
  • accountant e&o(34)
  • extended reporting period endorsement(30)
  • tail(29)
  • disciplinary coverage(27)
  • phishing(25)
  • legal malpractice insurance(23)
  • prior acts(22)
  • claims made coverage(21)
  • extended reporting period(21)
  • cyber security(20)
  • cyber liability(18)
  • accountant errors & omissions(18)
  • claims reporting(18)
  • crime insurance(16)
  • ransomware(16)
  • claim prevention(16)
  • attorney protective cle(14)
  • the hartford weekly newsletter(14)
  • attorney protective cle webinar(14)
  • 2022 mcgowan pro cpe webinar for accountants(13)
  • professional liability insurance(13)
  • attpro tip of the month(13)
  • business owners insurance(12)
  • mcgowan webinar series for cpas 2021(12)
  • retirement tail(12)
  • legal liability insurance(11)
  • bop(11)
  • fee suits(10)
  • full prior acts(10)
  • cyber crime(10)
  • accountant errors & omissions insurance(10)
  • prior acts date(9)
  • insurance(9)
  • coverage(9)
  • step rating(9)
  • non-practicing erp(9)
  • cyber liability insurance(9)
  • title agent errors & omissions(9)

View Mobile Version
Logo
Quick Links
Home Our Products Customer Service Payment Options Common Terms
About Us Refer A Friend Our Carriers Blog Contact Us
Location
2430 Camelot Ct SE
Grand Rapids, MI 49546

Local: 616.940.1101
Toll Free: 866.940.1101
Email: info@L2ins.com
Facebook Twitter Social LinkedIn
© Copyright. All rights reserved.
Powered by Insurance Website Builder