LegalSEC®

Mission Statement

The mission of LegalSEC® is to provide the legal community with guidelines for risk-based information security programs that are achievable, measurable and mature.

The primary goals of LegalSEC® are:

Align the legal community with ISO 27000 series standards
Promote information security through education.
Foster improved communications in the legal industry around information security.

To achieve these goals LegalSEC® will:

Deliver a Set of Resources/Documentation
Recommend Technical Controls, a Defense-in-Depth Approach
Provide guidance for a Security Awareness Program

About “ISO27k”

The ISO/IEC 27000 series of standards provides guidance around information security controls, discipline, and maturity. These standards have been adopted broadly across industries and can be applied regardless of organizational size / geographic footprint. Because of these and other factors, ILTA’s LegalSEC initiative uses the ISO standards as the foundation of our efforts. For more information on the standards, click here.

Public Content

Webinar Recordings			Documents
5-7-13 - Why Information Security Can't Just Be Just an IT Problem 5-10-13 - SecureED Product Briefing 6-5-13 - Keeping Client Data & Your Law License Secure 6-6-13 - Vulnerability Assessments, Security Assessments, and Penetrations Tests:? What's the difference, which do I want?? 8-5-13 - Who Do You Trust? Managing Risk In an Outsourced World 8-14-13 Managing Risk: data Control & Data Privacy in Midsize Lawfirms 9-18-13 - HIPAA Compliance: What it is, what it means, and what to do about it 10-3-13 - Secure Yet Pain free Mobile Access to Confidential Legal Documents & Collaboration Tools 10-4-13 - HIPAA: What law firm employees need to know now 10-31-13 - Complying with the "Minimum Necessary" standard of the HIPAA Privacy Rule 12-4-13 - Benefits of the ISO-27001 for Legal Firms 4-1-14 - ISO 27001 Doesn't Have to Be Scary: 10 Simple Steps			Vendor Risk Assessment Vendor Security Review August 2013 - Survey Results: Study of the Legal Industry’s Information Security Assessment Practices World Economic Forum Cyber Security Guidelines Summary of Information Governance Survey Results

Latest Discussion (Members Only)

Members need to be logged in to access discussion area

Either the content you're seeking doesn't exist or it requires proper authentication before viewing.

Latest Shared Files (Members Only Area)

Members need to be logged in to access members only documents

Either the content you're seeking doesn't exist or it requires proper authentication before viewing.

Community Blogs

Log in to see this information

Either the content you're seeking doesn't exist or it requires proper authentication before viewing.

Upcoming Events

Log in to see this information

Either the content you're seeking doesn't exist or it requires proper authentication before viewing.

Security News

No Data Found

The Information Governance Initiative (IGI) is a cross-disciplinary consortium and think tank dedicated to advancing the adoption of Information Governance practices and technologies through research, publishing, advocacy and peer-to-peer networking. We invite practitioners and organizations who wish to participate in or support the IGI to visit our website at http://www.IGInitiative.com.