find the latest legal job
Corporate Counsel and Company Secretary
Category: Generalists - In House | Location: Newcastle, Maitland & Hunter NSW
· Highly-respected, innovative and entrepreneurial Not-for-Profit · Competency based Board
View details
Chief Counsel and Company Secretary
Category: Generalists - In House | Location: Newcastle, Maitland & Hunter NSW
· Dynamic, high growth organisation · ASX listed market leader
View details
In-house Projects Lawyer | Renewables / Solar | 2-5 Years PQE
Category: Generalists - In House | Location: All Australia
· Help design the future · NASDAQ Listed
View details
Insurance Lawyer (1-3 PAE)
Category: Insurance and Superannuation Law | Location: Sydney NSW 2000
· Join a dynamic Firm · Excellent career growth opportunity
View details
In-house lawyer 1-4 PAE
Category: Generalists - In House | Location: Adelaide SA 5000
· Leading Brand · Report to a Dynamic Legal Counsel
View details
Managing IT security risk?

Managing IT security risk?

Promoted by

Clients expect their law firms to act as a vault for valuable, confidential and sensitive information. So it’s no surprise that lawyers take extra care when it comes to managing the security of their IT systems. 

THE FIRST step to managing your IT security risk is to understand some threats your business can be exposed to. At Innessco, we have three categories of threats: Random, Accidental and Deliberate.

Random threats
- Your documents are encrypted and you are required to pay a ransom to decrypt them (Cryptolocker-style virus)
- A virus infects your IT system and generates so much activity that normal computer use is not possible (Denial of Service)

Accidental threats
- Staff member loses mobile phone or laptop with email and/or business documents stored on it
- Staff member accidentally deletes files from a file server

Deliberate threats
- Staff member takes corporate documents for private use (or distributes to unauthorised parties)
- External party targets your organisation for sensitive information
3 Basic Steps for improving your IT security straight away
Before you start looking at sophisticated systems and expensive solutions, make sure you have covered off the basics for IT security.

1. Apply Windows Updates Monthly – to your servers and workstations. Run a management report to verify successful application. Did you know that when Microsoft releases Windows Updates it actually publishes details of the security vulnerability? This increases the risk of deliberate threats to your firm.

2. Implement a Virus Scanner that has a central management console. Again, run a management report to verify that the virus definitions have been successfully applied.

3. Treat passwords seriously. A slip in your system allows easy unauthorised access, so make sure you:
     a. Don’t have the same password for all users.
     b. Don’t reveal your personal password to anyone
     (use application security settings to share access, e.g. mailbox delegation).
     c. Configure your system to require passwords with capital letters, numbers and special characters.
     d. Configure your system to disable an account after five password failures. 

Once you have these first principles in place, you can begin to consider more sophisticated solutions. The next step I recommend is to make sure you have a secure document management system that enables document level security, versioning and auditing.

Robert Cox helps law firms solve their IT problems as a director at Innessco.
Email This email address is being protected from spambots. You need JavaScript enabled to view it.


Like this story? Read more:

QLS condemns actions of disgraced lawyer as ‘stain on the profession’

NSW proposes big justice reforms to target risk of reoffending

The legal budget breakdown 2017

Managing IT security risk?
lawyersweekly logo
Promoted content
Recommended by Spike Native Network
more from lawyers weekly
Aug 22 2017
Professionals unite in support of marriage equality
The presidents of representative bodies for solicitors, barristers and doctors in NSW have come toge...
Aug 21 2017
Is your firm on the right track for gig economy gains?
Promoted by Crowd & Co. The way we do business, where we work, how we engage with workers, ev...
Scales of Justice, Victorian County Court, retiring judges
Aug 21 2017
Replacements named for retired Vic judges
Two new judicial officers have been appointed in the Victorian County Court, following the retire...
Allens managing partner Richard Spurio, image courtesy Allens' website
Jun 21 2017
Promo season at Allens
A group of lawyers at Allens have received promotions across its PNG and Australian offices. ...
May 11 2017
Partner exits for in-house role
A Victorian lawyer has left the partnership of a national firm to start a new gig with state governm...
Esteban Gomez
May 11 2017
National firm recruits ‘major asset’
A national law firm has announced it has appointed a new corporate partner who brings over 15 years'...
Nicole Rich
May 16 2017
Access to justice for young transgender Australians
Reform is looming for the process that young transgender Australians and their families must current...
Geoff Roberson
May 11 2017
The lighter side of the law: when law and comedy collide
On the face of it, there doesn’t seem to be much that is amusing about the law, writes Geoff Rober...
May 10 2017
Advocate’s immunity – without fear or without favour but not both
On 29 March 2017, the High Court handed down its decision in David Kendirjian v Eugene Lepore & ...