Course postponed

Due to Covid-19 we have postponed this course. We will endeavour to reschedule all the dates as soon as possible. If you have already booked a place for this event, or require more information, please email: cpd@lawscot.org.uk

Develop a strong understanding of cyber security while earning recognition as a Law Society of Scotland Certified Specialist.This 16 hour course will give you a more comprehensive set of skills and knowledge in cyber security, and help you to take the next step in your career.

The course is designed with Scottish solicitors in mind, but is also open to non-members, and participants do not need to have a technical background.

New dates will be announced soon
Date Location Item
26 March, afternoon Edinburgh Cyber threat awareness seminar
27 March, morning Edinburgh Managing cyber risk seminar
29 April Law Society of Scotland, Edinburgh Data protection officer training
31 May Online Assignment submission deadline

The course is priced at £960 + VAT and consists of 16 hours of verified CPD as well as an optional four hours of private study materials. Completing it fulfills your CPD requirements for the year, including the compulsory risk management component.

If you’re not a member, or have already completed the Cyber Resilience Online CPD module, please contact our CPD team to book: CPD@lawscot.org.uk

Please note there are only 16 spaces available.

The two seminars that form part of course are delivered in partnership with the Cyber Academy, bringing years of expertise from Edinburgh Napier University to the legal profession.

  1. Sign up for the certified course in Cyber Security
  2. Complete introductory pre-training online module in cyber resilience (1 hr verified CPD - fulfills compulsory risk management CPD obligation)
  3. Attend two face to face training courses, Cyber threat awareness for law firms and Managing Cyber Risk for Law Firms: Cyber incident response, (8 hrs verified CPD)
  4. Attend face to face Data Protection Officer Training course (6 hr verified CPD)
  5. Online submission of assignment (1 hr verified CPD)
  6. Certification in Cyber Security awarded with use of our marque

Optional online private study consolidation package (4 hr private study CPD).

Course components

Learning outcomes:

  • Understand the cyber threat landscape and why organisations must adopt safe cyber practices
  • Identify the measures an organisation needs to secure their digital footprint
  • Understand techniques used by cyber criminals in an attack and how to protect against them
  • Use modern information technology software safely and responsibly
  • Identify the steps to take if a breach of security occurs

Counts as 1 hour of verified CPD and fulfills compulsory risk management CPD obligation.

 

Date: Thursday 26 March 2020, afternoon
Location: Edinburgh

Cyber threats are a harsh reality, and no individual or organisation is immune. Law firms around the world are a primary target, as the custodians of sensitive information and money. Every firm, large or small must protect their client accounts, confidentiality, level of funds in bank, with awareness of the frequency of transactions.

This course is an informative and educating session, that will introduce you to cyber threats you never believed you were exposed to. We shall be discussing:

Learning outcomes:

  • The different kinds of cyber threats and actors
  • The difference between internal and external threats
  • How social engineering works and how easily you can become a phishing victim
  • How you can monitor if your personal and business emails are involved in a data breach
  • How your devices leak information about you and your firm
  • The risks of using social media and dating websites/apps
  • Is your cat the source of your breach?
  • Cases studies of breaches in law firms
  • Cyber Incident: Are you ready to deal with it?
  • The need for an Incident Response Plan
  • Internal and External Audits & Training 

Course tutor: Basil Manoussos, MSc,PGC,BSc,AAS,MBCS.

Basil Manoussos, MSc,PGC,BSc,AAS,MBCS, is a digital forensics consultant with a decade of experience as an Expert Witness and more than three decades industry experience. He has worked in cases involving criminal and family courts, employment tribunals and civil courts. He has successfully challenged police forensic reports and is currently the Manager of The Cyber Academy at Edinburgh Napier University. Basil is a regular speaker in conferences and other events of the Law Society of Scotland, a contributor to conferences around the country and abroad, and a guest speaker in most Scottish universities. In 2018 he was a finalist in the Cyber Evangelist of the Year category, at the Scottish Cyber Awards. He holds an MSc in Forensic Informatics from Strathclyde University and is a Member of the BCS. Basil is currently appointed as a Member of Law Society’s Accredited Legal Technologist Advisory Panel.

Date: Friday 27 March 2020, morning
Location: Edinburgh

Law firms have an additional risk of holding very sensitive information as well as money. Unlike the common misconception, the smaller the law firm, the higher the risk.

What would you do if your firm was attacked now? Do you have a plan prepared? This course will prepare you for incident response.

Learning outcomes:

  • Who and how will go after a law firm and why?
  • What is the impact of a data breach
  • Risk & Vulnerability assessment
  • Preparing for the incident. Not if but when?
  • IT Policies and E-exit interviews
  • Set up a plan
  • Prepare your response teams
  • Random forensic checks
  • Minimize your digital exposure
  • Drills and Penetration Testing
  • Workshop: Preparing playbooks

 Course tutor: Basil Manoussos, MSc,PGC,BSc,AAS,MBCS.

Basil Manoussos, MSc,PGC,BSc,AAS,MBCS, is a digital forensics consultant with a decade of experience as an Expert Witness and more than three decades industry experience. He has worked in cases involving criminal and family courts, employment tribunals and civil courts. He has successfully challenged police forensic reports and is currently the Manager of The Cyber Academy at Edinburgh Napier University. Basil is a regular speaker in conferences and other events of the Law Society of Scotland, a contributor to conferences around the country and abroad, and a guest speaker in most Scottish universities. In 2018 he was a finalist in the Cyber Evangelist of the Year category, at the Scottish Cyber Awards. He holds an MSc in Forensic Informatics from Strathclyde University and is a Member of the BCS. Basil is currently appointed as a Member of Law Society’s Accredited Legal Technologist Advisory Panel.

Date: Wednesday 29 April 2020
Location: Law Society of Scotland, Edinburgh

A data protection officer (DPO) is responsible for ensuring their organisation’s compliance with the GDPR and other data protection laws and policies, as well as raising awareness and providing training for their colleagues. As such, the Information Commissioner’s Office states that a DPO should have a good knowledge of data protection law and an awareness of the data protection needs and processing activities.

Law firms aren’t automatically required to appoint a data protection officer but are likely to find themselves having to do so on the basis of the personal data they handle. Additionally, legal professionals working in-house will often be asked to take on the role of data protection officer.

This event is aimed at those who have been asked to be data protection officers and those already in the role looking to learn more. It will provide you with a further grounding in data protection law – including a progress report on GDPR – while addressing the practicalities of the role such as providing training to colleagues and implementing policies within the organisation.

Learning outcomes:

  • Understand the role and responsibilities of the data protection officer
  • Implement data protection policies within your organisation
  • Minimise risks of cyber incidents and data breaches
  • Ensure that colleagues and external suppliers and clients are aware of their data protection obligations
  • Learn the priorities in relation to the regulators

Gain 4 extra hours of private study materials to enhance and consolidate your knowledge in the context of your own organisation.

Materials include content from:

  • National Cyber Security Centre
  • Law Society of Scotland Privacy Committee
A message from cyber terrorists Incognito: Cyber resilience training