Please ensure Javascript is enabled for purposes of website accessibility

 

Ransomware – Protect Your Data or Pay the Price

18

Course Number

5266

CLE

Approved for 1.0 hours of General CLE Credit including 1.0 hours of Technology or 1.0 hours of Ethics

Description

The number of ransomware attacks is growing, and law firms need to know how to prepare and react. Our panelists will review the current landscape, discuss policies, procedures, and response plans, advise on how law firms can decide how to respond, and share their insights on what comes next.

Learning Objectives:

  • Latest Trends in Ransomware Attacks
  • Ethical obligations that apply in safeguarding client data and breach notification
  • What to Do if You Get Hit
  • Legal & Practical Considerations in Deciding whether to Pay Ransomware
  • Countermeasures – Basic Steps Law Firms Can Take to Protect Themselves

RESOURCES

Slides – Ransomware – Protect Your Data or Pay the Price

SPEAKER BIO

Joelle Dvir is an associate in McDonald Hopkins’ national Data Privacy and Cybersecurity Group. She is certified by the International Association of Privacy Professionals as a Certified Information Privacy Professional for the United States, which is considered the gold standard for information privacy professionals. Joelle advises organizations on data privacy and cybersecurity risks on the national and international levels, including proactive compliance with state and federal data breach notification laws and incident response strategies and management. She works with clients to implement best practices, including policy development and workplace training. Joelle has counseled clients through hundreds of data breaches and privacy incidents, working closely with forensic investigators, third party vendors, and local, state and federal law enforcement, while minimizing exposure to her clients. Her work in the data privacy and cybersecurity area covers a multitude of industries, including higher education, healthcare, maritime, accounting, financial services, non-profits, real estate, financial services, banking, law, municipalities, public entities and insurance. Joelle is part of the team that was named a finalist for Advisen’s 2018 Cyber Law Firm of the Year.

Esteban Farao is a Director of IT Security Consulting at ERMProtect Cybersecurity Solutions in Coral Gables, Florida. Esteban is an expert certified ethical hacker who has advised hundreds of national and international organizations on cybersecurity risks and remediation strategies. He tests for vulnerabilities in IT infrastructures and guides clients to fortify their security, while also ensuring they are following best practices and regulations related to data security. During his 25 years in cybersecurity, he has responded to hundreds of data breach incidents, assisting clients to identify the nature and scope of attacks and contain threats so organizations can get back up and running. His deep knowledge of digital forensics has helped him break open major cases related to fraud, embezzlement, IP theft and other misdeeds. For law firms, he has extracted information from various servers, computers, mobile devices, and mobile phones to provide case-winning evidence. Esteban has two master’s degrees, and eleven of the most coveted IT security certifications including CISSP, CISA, CISCO, CEH, and EnCe. He is also certified by the Payment Card Industry Security Council to assess an organization’s compliance with payment card security requirements and to investigate payment card data breaches (PCI QSA, PCI PFI).


You must report your completed courses online using the course number referenced above.
Post CLE Credits

LEGALFUEL CLE PRESENTATIONS ARE INTENDED FOR EDUCATIONAL PURPOSES ONLY AND DO NOT REPLACE PROFESSIONAL JUDGMENT. STATEMENTS OF FACT AND OPINIONS EXPRESSED ARE THOSE OF THE PRESENTERS INDIVIDUALLY AND, UNLESS EXPRESSLY STATED TO THE CONTRARY, ARE NOT THE OPINION OF THE FLORIDA BAR OR ITS COMMITTEES. THE FLORIDA BAR DOES NOT ENDORSE OR APPROVE, AND ASSUMES NO RESPONSIBILITY FOR, THE CONTENT, ACCURACY OR COMPLETENESS OF THE INFORMATION PRESENTED. ANY FEEDBACK SHOULD BE PROVIDED TO THE EVENT ORGANIZER.