iWitness: How One Firm Upgraded Security

Download a printable PDF of this article.

Change can be difficult and challenging, especially for lawyers. Over the past year or so, my law firm has made a concerted effort to improve our cybersecurity defenses. The process is ongoing, and we still have a lot of work to do. Despite the occasional aggravation, I think the results justify the time and effort we’ve put in. There are three major areas we needed to think about: (1) individual employee conduct, (2) central office systems security, and (3) using the cloud.

First, the “easy stuff,” which, perversely, caused much of the aggravation. I’m referring to implementing basic security principles, including workstation lockout, password security, and portable storage protocols.