Cybersecurity

Support at every stage:

Building operational resilience and cyber-readiness, we advise:

• Major global organizations on cyber risk management and incident readiness, at an operational, executive and board level. 
• Clients in a range of sectors on their compliance with cybersecurity-specific legal and regulatory requirements, including in relation to critical national infrastructure. 
• Businesses across sectors and jurisdictions on implementing technical and organizational cyber and privacy controls to optimize legal and regulatory readiness.

Coordinating a rapid and effective response to cyber incidents, we support: 

• Organizations on hundreds of cyber incidents affecting operations and those of their supply chains partners, including ransomware, theft of personal and business sensitive data, denial-of-service attacks, code injection attacks, and cyber-facilitated fraud (such as business email compromise).
• Politically and societally important organizations on the containment of, and response to, nation-state intrusions and instances of political and industrial espionage. 
• Clients on their engagement with privacy and sector-specific regulators; government and law enforcement bodies across the world; and notification programs to many millions of data subjects.  

We provide guidance on mitigating future risk, and managing disputes and litigation:

• Post-incident disputes, including personal data breach group actions, business-to-business disputes, claims involving managed security service providers, and actions to prevent the misuse of confidential information. 
• Regulatory investigations resulting in no penalties or enforcement action and assisting in appealing and reducing one of the largest fines imposed by a regulator in connection with a cyber incident. 
• Multiple clients on post-incident remediation and improvement plans, to align with international regulatory and industry standards.