Cyber is a key, and growing, risk for our clients, and we recognise the range of challenges it presents. Our cross-stream Cyber group comprises legal experts from our corporate, financial services, technology, data protection, IP, financing and dispute resolution teams. We approach cyber as a corporate governance risk, and advise on the full spectrum of cyber issues. This includes helping our clients understand and mitigate cyber risks, both in their business as usual operations, and when engaging in activities which raise specific cyber concerns. For example we help clients:
- develop cyber risk management frameworks, to enable clients to assess their compliance with laws, regulation and best practice relating to cyber risk
- prepare for cyber breaches, including designing tailored cyber response plans
- respond post breach, including advising the board on internal and external actions, coordinating investigation of the breach and liaising with regulators and third parties
- manage cyber risks when engaging in M&A activity
We also work closely with leading cyber consultancy firms, and seek to ensure that our clients have access to the best thought leadership in this dynamic area. We run executive level cyber training programmes across a range of sectors, and host cyber events (including our annual panel debate) with high profile speakers which enable our clients to exchange ideas with both experts and peers.
The quality of their advice is very high. They take a collaborative and creative, commercial approach rather than strictly legal Chambers UK, 2016View all Information Technology media comments
Our key experience includes advising:
A global bank on the production of a register of Cyber and Information Security legal and regulatory obligations including market practice around compliance in 8 core territories and 51 secondary jurisdictions.
A major multinational utilities company on its cyber risk management framework which it uses to assess its compliance with the laws, regulations, guidance and best practice relating to cyber risk
A publicly-listed telecommunications provider on its response to a system-wide ransom hack, including its strategies for notification to the Information Commissioner's Office and customers, assessment of its corporate governance and reporting obligations, and its compliance with related regulatory requirements
Schroders, Carillion, The Marketing Academy Fellowship and a major fashion house with tailored support and advice in assessing their approach to cyber risk and compliance
An education sector client on a cyber security breach, with our work involving analysis of the laws around data protection, computer misuse and theft as well as advice on privilege and notification to regulators and relevant law enforcement agencies
Leading cyber security consultancy firms on the development of strategic cyber security advice for our clients
A range of clients, including most recently a global HR agency on the development of tailored cyber incident response plans
A publicly-listed transport operator on its response to a cyber bot attack, including compliance with obligation to notify customers and staff under data protection and privacy regulation, and assessing its corporate governance and regulatory notification requirements
A global HR agency on the development of a tailored cyber incident response plan.