All attorneys involved with eDiscovery need to be concerned about cybersecurity, as confidential electronically stored information, which is subject to discovery, is at risk to criminal hackers. Realizing this connection between eDiscovery and cybersecurity, Dino Medina, General Counsel to an eDiscovery company, Complete Discovery Source, authored an article, http://nysbar.com/blogs/EDiscovery/2016/10/26/Dino%20NYSBA%20Cybersecurity%20Article--May2016.pdf, on Defensible Cybersecurity.
In his timely and pithy article, Mr. Medina sets forth the following: the elements used to assess an organization's cybersecurity program; a set of best practices to guide the development of said program; various cybersecurity accreditations (SSAE-16 SOC 1, SOC 2, ISO-27001 2013 Standard, PCI Standard and FedRAMP); and how incorporating applicable legal standards at each stage of a cybersecurity program results in the most effective program.
This entry was made by Craig Brown, a member of the eDiscovery Committee and author of this blog. Mr. Brown is a practicing attorney specializing in eDiscovery and one of the pioneers of the contract attorney industry. Prior to founding and building companies in that industry, Mr. Brown was a Litigation & Antitrust Associate with Kaye Scholer and Litigation Partner with McLaughlin & Stern.