This practical training program equips lawyers and legal professionals to protect client data in a threat environment that increasingly targets legal matters. Cybersecurity is no longer solely an IT concern; it is a day-to-day professional responsibility that directly supports the duties of competence and confidentiality.
Through a risk-based, practice-focused approach, participants learn how common attacks exploit the realities of legal work — tight deadlines, high-value transactions, sensitive investigations, privileged communications, and extensive reliance on email, shared documents, and third-party vendors.
The program translates security concepts into concrete legal workflows: verifying payment instructions to prevent business email compromise; reducing misdirected disclosures caused by autocomplete and rushed forwarding; managing access with strong authentication and least-privilege permissions; handling documents to avoid metadata leaks and redaction errors; and working safely from home, court, or travel with secure devices and networks.
It also addresses technology competence in a vendor-rich ecosystem, including e-discovery platforms, collaboration tools, court portals, virtual assistants, and AI-enabled services — focusing on due diligence questions, contract guardrails, and supervision practices that help prevent confidentiality breaches before they happen.
We will examine real-world scenarios drawn from law firm and in-house settings — ransomware that disrupts filings, a compromised mailbox during an M&A closing, a vendor breach exposing production data, a lost phone with matter access, or an AI tool used with sensitive client content. Each scenario includes decision points and “what to do next” steps: immediate containment, evidence preservation, internal escalation, and client communication considerations.
By the end, attendees leave with practical habits, checklists, and an escalation path they can use under pressure to reduce the likelihood of client data loss and to respond effectively if an incident occurs.
Learning Objectives:
At the conclusion of the program, attendees will:
- Understand how cybersecurity supports the ethical duties of competence and confidentiality in modern legal practice.
- Recognize common threat patterns (phishing, business email compromise, ransomware, account takeover, malicious insiders) and the specific ways they target legal matters and threaten ethical obligations.
- Know what secure handling practices should apply for client data across devices, email, document sharing, messaging, and remote work to protect data and comply with ethical obligations.
- Understand the ethical and practical considerations to respond effectively to incidents: contain risk, preserve privilege, document actions, coordinate with IT/security, and communicate appropriately with clients, insurers, and authorities.
Apple
Google Calendar
Office 365
Outlook
