Vendor Risk Management for Law Firms: 7 Steps to Success

Most firms have extensive cybersecurity measures in place, but emerging or unclear regulatory requirements embroil them in a never-ending cycle of evaluation, best-practices review, and implementation. Firms don't just need to have their own systems secured; a responsible firm must also reduce the risk of breach at their third-party vendors. As cloud service providers become commonplace, so too does a firm's responsibility to ensure their vendors are managing risk appropriately.

11 minute read May 01, 2018 at 12:11 AM
By
Ishan Girdhar
Vendor Risk Management for Law Firms: 7 Steps to Success

Most firms have extensive cybersecurity measures in place, but emerging or unclear regulatory requirements embroil them in a never-ending cycle of evaluation, best-practices review, and implementation. Firms don't just need to have their own systems secured; a responsible firm must also reduce the risk of breach at their third-party vendors.

This premium content is locked for Cybersecurity Law & Strategy subscribers only

ENJOY UNLIMITED ACCESS TO THE SINGLE SOURCE OF OBJECTIVE LEGAL ANALYSIS, PRACTICAL INSIGHTS, AND NEWS IN Cybersecurity Law & Strategy

  • Stay current on the latest information, rulings, regulations, and trends
  • Includes practical, must-have information on copyrights, royalties, AI, and more
  • Tap into expert guidance from top entertainment lawyers and experts
Subscribe Now

Already have an account? Sign In Now

For enterprise-wide or corporate access, please contact Customer Service at [email protected] or call 1-877-256-2473.

NOT FOR REPRINT

© 2026 ALM Global, LLC, All Rights Reserved. Request academic re-use from www.copyright.com. All other uses, submit a request to [email protected]. For more information visit Asset & Logo Licensing.

Continue Reading

Innovation Engineering: How Firms Can Think Bigger and Ask Better Questions

Most firms are aiming their newest tools at the work they already do — pouring their most powerful technology into running the same tasks a little faster. But when everyone automates the same tasks at once, no one pulls ahead. That reaches the future a little faster while leaving a firm’s largest opportunity untouched — and that opportunity isn’t doing more of the existing work, but transforming how the high-value work gets done.

June 01, 2026

Legal AI’s Biggest Mistake: Treating All Workflows the Same

Artificial intelligence is rapidly embedding itself into legal workflows, but much of the conversation treats all use cases as if they carry the same level of risk, even if they do not. The more useful question is not whether AI works, but where it can be safely applied and where it cannot.

June 01, 2026