Cyber is a key, and growing, risk for our clients, and we recognise the range of challenges it presents. Our cross-stream Cyber group comprises legal experts from our corporate, financial services, technology, data privacy, IP, financing and dispute resolution teams. It also forms part of our multi-disciplinary Technology group which advises on the full spectrum of technology matters. 

We approach cyber as a corporate governance risk, and advise on the full spectrum of cyber issues. This includes helping our clients understand and mitigate cyber risks, both in their business as usual operations, and when engaging in activities which raise specific cyber concerns.

We help clients:

  • develop cyber risk management frameworks, to enable clients to assess their compliance with laws, regulation and best practice relating to cyber risk
  • prepare for cyber breaches, including designing tailored cyber response plans
  • respond post breach, including advising the board on internal and external actions, coordinating investigation of the breach and liaising with regulators and third parties
  • manage cyber risks when engaging in M&A activity or other corporate / commercial transactions

Key experience


Cyber and Information Security register for global bank

A global bank on the production of a register of Cyber and Information Security legal and regulatory obligations including market practice around compliance in 8 core territories and 51 secondary jurisdictions.

Cyber risk management framework for utilities company

A major multinational utilities company on its cyber risk management framework which it uses to assess its compliance with the laws, regulations, guidance and best practice relating to cyber risk.

Telecommunications provider and its response to a system-wide ransom hack

A publicly-listed telecommunications provider on its response to a system-wide ransom hack, including its strategies for notification to the Information Commissioner's Office and customers, assessment of its corporate governance and reporting obligations, and its compliance with related regulatory requirements.

Cyber security breach for an education sector client

An education sector client on a cyber security breach, with our work involving analysis of the laws around data protection, computer misuse and theft as well as advice on privilege and notification to regulators and relevant law enforcement agencies

We have close working relationships with leading cyber consultancy firms, and ensure that our clients have access to the best thought leadership and industry experts in this ever-evolving area. We run executive level cyber training programmes across a range of sectors, and host cyber events (including our annual panel debate) with high profile speakers which enable our clients to exchange ideas with both experts and peers.

Key Contacts