It's not very often I disagree with Sharon Nelson and her crew, but I had certain expectations when I saw this post's title - that she'd mention the owners' mentality, partner inconvenience, and general attitude of lawyers when it comes to reasons they're bad at security. Instead she went with "too expensive," "We're not a target," "It's too disruptive to our operations," and "we have cyberinsurance." Those are all reasons, so maybe it's not that I disagree with her, but more so that we've seen different prioritizations. Since the dawn of my time in legal, partners are not very amenable to any rules that curtails their ability to do as they wish. They are smart people and these sorts of cybersecurity precautions are for the little people, the nonlawyers of the firm. These are the things that prevent the conversations from ever happening. If the conversations actually start, then the issues that Sharon and company raised can happen (Although I have to admit I have heard few attorneys claim insurance is the reason not to do things). As I conclude this highlight, I am pondering what people in what industry ARE actually good at cybersecurity? Read more at ABOVE THE LAW: Why Are Lawyers So Terrible At Cybersecurity
Published September 8, 2023.
