Your IT Provider Isn’t Your Cyber Defence Strategy

1 hour verifiable CPD

Join Kerrie Machin, Director of Mitigo, in conversation with Louis Fairweather on cyber security considerations for your law firm.

Many law firms invest significantly in IT and security tools, yet cyber incidents continue to occur across the legal sector. The reason is often not a lack of technology, but a lack of independent oversight, assurance, and impartial advice, and a lack of clarity over where responsibility for cyber risk truly sits.  Reliance on an MSP or IT provider alone rarely provides full protection.

This session explains why firms with established controls and IT support are still being breached, how modern attacks bypass traditional defences, and what law firm leaders should be doing to strengthen resilience. It provides a practical, leadership-level perspective on managing cyber risk as a business issue, not just a technical one.

Key Takeaways

• Why firms with security tools and IT support are still being breached
• The difference between IT support and independent assurance 
• Where gaps commonly exist in governance, oversight, and accountability
• The role of leadership in managing cyber risk with confidence
• Practical steps firms can take to strengthen resilience and reduce exposure