Skip to content
Law Society of Scotland
Search
Find a Solicitor
Contact us
About us
Sign in
Search
Find a Solicitor
Contact us
About us
Sign in
  • For members

    • For members

    • CPD & Training

    • Membership and fees

    • Rules and guidance

    • Regulation and compliance

    • Journal

    • Business support

    • Career growth

    • Member benefits

    • Professional support

    • Lawscot Wellbeing

    • Lawscot Sustainability

  • News and events

    • News and events

    • Law Society news

    • Blogs & opinions

    • CPD & Training

    • Events

  • Qualifying and education

    • Qualifying and education

    • Qualifying as a Scottish solicitor

    • Career support and advice

    • Our work with schools

    • Lawscot Foundation

    • Funding your education

    • Social mobility

  • Research and policy

    • Research and policy

    • Research

    • Influencing the law and policy

    • Equality and diversity

    • Our international work

    • Legal Services Review

    • Meet the Policy team

  • For the public

    • For the public

    • What solicitors can do for you

    • Making a complaint

    • Client protection

    • Find a Solicitor

    • Frequently asked questions

    • Your Scottish solicitor

  • About us

    • About us

    • Contact us

    • Who we are

    • Our strategy, reports and plans

    • Help and advice

    • Our standards

    • Work with us

    • Our logo and branding

    • Equality and diversity

  1. Home
  2. For members
  3. Journal Archive
  4. Issues
  5. April 2022
  6. Cybersecurity – take it from us!

Cybersecurity – take it from us!

In association with Denovo: Law firms wondering about the need for security now have a real life lesson to note
18th April 2022 | In Association with Denovo

One of the most important parts of our job as a software provider who shares responsibility for keeping law firms’ data secure, is to explain what we do, what threats are, how attacks work (or have worked), why our recommendations are important, etc. Since most lawyers don’t know a whole lot about cybersecurity, tech companies spend a fair amount of time trying to work out the best way to describe this world, using relatable, personal examples and stories.

Unfortunately, in many cases law firms are neglecting this very real threat and choose convenience over security and compliance. That’s because using analogies and stories simply doesn’t work. Law firms simply need to know about real consequences, and solutions that help mitigate the threats.

Let’s face it, there are many lawyers out there for whom a deep, well-crafted explanation of what we’re doing to help is unnecessary and a waste of time. For them, us saying “because we said so” is enough.

Others have a very specific need which will require a very specific answer. (Why do I need multi-factor authentication? Why do I have to change my password all the time?) These folk don’t need stories either – just an explanation of the consequences to their business if they ignore advice. Last month, they got a real life example…

You had one job!

The ICO handed down a fine of almost £100k to a criminal law firm whose IT compliance was found wanting and it suffered a ransomware attack. Law firms have both a moral and legal obligation to protect clients’ personal and sensitive information. At this moment, it’s more important than ever for law firms in Scotland, no matter their size, to be vigilant and remain compliant with their obligations. You have one main job – protect your clients’ data. This is the one job that must not and cannot be ignored.

Is it a pain in the backside to keep inputting your password? Yes. Will it take time out of your week to remind co-workers to remain vigilant with IT security processes? Yes. Will ignoring this result in receiving a fine, potentially derail all the hard work you’ve put into your business and put your clients’ data at risk? More than likely, yes. Is it worthwhile putting the right technology in place, which if used to its best advantage, will put your firm in the strongest position to manage risk and ensure compliance? A resounding YES!

Let’s get your law firm’s data secure

Cybersecurity is about protecting systems, and more importantly data, wherever you allow the data to be used for the organisational mission – so you need multiple types of security strategies to protect that data, just as you have different lines of business/work types to deliver your goals.

Here are a few ways Denovo can help:

Cloud server security

Two-factor authentication adds a second layer of security to your server login. Verifying your identity using a second factor (like your mobile phone or another device) prevents anyone but you from logging in, even if they find out your password.

Backups

Whether you lose your device or you’re the target of a ransomware attack, it’s smart to regularly back up your firm data to a secure, encrypted location so you’ll still be able to access most of your data. Our Amazon S3 backups ensure we always have an isolated backup of your data.

Anti-virus

Stay protected with Eset Anti-Virus: scanning mailboxes and server applications reduces the chance of downloading malware or trojans.

Mailbox protection

Multifactor authentication (MFA) adds a layer of protection to the sign-in process. When accessing your mailbox, users provide additional identity verification, such as scanning a fingerprint or entering a code received on your smartphone.

Let the experts help

Most lawyers are not data experts, tech experts, or security experts. You practise law. With that in mind, one of the easiest things law firms can do is to put data in the hands of experts. Offsite cloud servers are encrypted, protected, and have teams of people (including experts at Denovo) ensuring their security. In our opinion, they are underutilised in the legal industry.

Most importantly, educate yourself and your team, and start to expect everyone to have sufficient understanding in data/cybersecurity matters. Security in the digital world is a conscious effort for every employee, not just IT, and not just your software provider. Law firm leaders need to hold everyone on their team accountable for cybersecurity, just as they hold everyone accountable for the bottom line, customer service, legal work, and other mission-impacting activities. 

And if your team don’t have the experience they need, intentionally give it to them and reach out to experts like Denovo for help.

Secure your business

If you’re ready to secure your business or would just like some advice, visit www.denovobi.com, call us on 0141 331 5290, or if you would prefer to write to us our email is info@denovobi.com

Share this article
Add To Favorites
https://lawware.co.uk/

Regulars

  • People on the move: April 2022
  • Reading for pleasure: April 2022
  • Book reviews: April 2022

Perspectives

  • Opinion: Ruth Croman
  • President's column: April 2022
  • Editorial: Wanted!
  • Profile: Chris Barnes
  • Viewpoints: Arrears and errors

Features

  • Desperately seeking solicitors
  • Rules of the driverless road
  • Return to work: getting it right
  • Young lawyers flag climate impact
  • Law into orbit
  • Police enquiries: a private matter?

Briefings

  • Criminal court: Thom bar still applies
  • Licensing: tighter rules for the pet trade
  • Insolvency: Transition from the COVID measures
  • Tax: What did the Spring Statement bring?
  • Immigration: Providing a home for Ukrainians
  • Scottish Solicitors' Discipline Tribunal
  • Property: RCI – what does it involve?
  • In-house: Looking for a star

In practice

  • AML: the new benchmark
  • Safe passage: navigating the return to the office
  • Ask Ash: Helicopter overhead
  • A burning issue
  • Discipline cases: a three way balance
  • Tradecraft tips

Online exclusive

  • Register of Controlled Interests: when will it apply?
  • Corporate transparency and register reform
  • Prescription: times a-changing at last
  • Corporate liability: a leap forward

In this issue

  • Cybersecurity – take it from us!
  • Boundary experts in demand
  • Why your client intake processes matter
  • UK sanctions on Russia: what it means for your business

Recent Issues

Dec 2023
Nov 2023
Oct 2023
Sept 2023
Search the archive

Additional

Law Society of Scotland
Atria One, 144 Morrison Street
Edinburgh
EH3 8EX
If you’re looking for a solicitor, visit FindaSolicitor.scot
T: +44(0) 131 226 7411
E: lawscot@lawscot.org.uk
About us
  • Contact us
  • Who we are
  • Strategy reports plans
  • Help and advice
  • Our standards
  • Work with us
Useful links
  • Find a Solicitor
  • Sign in
  • CPD & Training
  • Rules and guidance
  • Website terms and conditions
Law Society of Scotland | © 2025
Made by Gecko Agency Limited