This workshop will review the impact on law firms when they are viewed by their clients as vendors. We will review the factors that drive client expectations including regulatory requirements and corporate board expectations. An overview of Third Party Risk Management principles as they apply to law firms will also be discussed. The workshop will conclude with a review of the Shared Assessments Standard Information Gathering Questionnaire (SIG) and how firms can use it to assess and establish their information security and data privacy controls in line with client expectations. Each participant will be provided with a limited license version of the SIG to begin the process of assessing their risk control environment. This effort will prepare attendees for the second workshop where the SIG controls will be discussed in greater detail.
Brad Keller, JD, CTPRP, CTPRA, CSO and SVP of Shared Assessments/Santa Fe Group