#CyberFLASH: Cybersecurity Cooperation And Canadian Law Firms

10712553Canadian law firms have been closely watching the cybersecurity collaboration developments between the financial industry and law firms happening south of the border. The push for law firms to provide greater levels of cybersecurity assurances to financial institutions has been driven to a large degree by the US Treasury Department, which has identified law firms for specific scrutiny. These developments have led Canadian financial institutions and the Office of the Superintendent of Financial Institutions (OSFI) to closely follow what is happening in the US and begin making similar moves regarding cybersecurity in Canada.

Collaboration amongst Bay Street law firms in Canada already occurs today, in large part through regular informal meetings that CIOs and security leads hold in order to discuss various topics, including cybersecurity. Currently, however, there is no formal cybersecurity information sharing or collaboration, although discussions about setting up this type of organization have been ongoing.

Cooperation and information sharing on cybersecurity also was enhanced when, in June 2013, the US-based International Legal Technology Association held its first ever LegalSEC summit in the Chicago area, in recognition of the growing need for law firm IT departments to respond to and collaborate on cybersecurity. The summit was an entire day and McCarthy Tetrault was one of the only Canadian firms represented.

In 2014 the summit expanded to two days and a number of CIOs and security leads from major Canadian firms attended to learn what security challenges their US colleagues were facing and how they were addressing them. The Canadian firms also used time at the summit to have their own informal meetings on cybersecurity. LegalSEC will again take place this year on June 8th and 9th in Baltimore, MD and the initiative amongst Canadian law firms is expected to develop further

Canadian law firms are exploring ways in which they can provide their financial institution clients and other clients enhanced cybersecurity assurance by adopting common industry standard information security best practices, including IT and cyber risks in firm risk management, and by developing more formal information security governance with regular briefings to firms’ management teams and boards of partners.

Read more here

About canux
© 2013 CyberTRAX Canada - All Rights Reserved.
Sponsored by C3SA Corp.