If your organization has been looking for a clear and concise resource for cybersecurity guidance, the American Bar Association’s Cybersecurity Legal Task Force has you covered. They recently released the second edition of the Vendor Contracting Project: Cybersecurity Checklist, which is tailored to solo and small firm attorneys who interact with vendors that handle sensitive and confidential information. This checklist directly applies to vendors practicing in information governance, digital forensics, eDiscovery, and document review hosting.
The checklist provides insight to how firms can reduce their risk when dealing with third party vendors that handle data. If you are a active ABA member the current edition’s checklist is free, but don’t worry. If you aren’t a member but would like to download the resource you can for a reasonable fee on the ABA’s website, here is the direct link.
The checklist is broken down into three sections: Cybersecurity Strategy – Understanding the Transactional Landscape, Risk Assessment – Cybersecurity Considerations for the Transaction, and Contract Provisions – Setting Expectations, Mitigating Risk, and Allocating Liability. This is an in-depth yet to the point resource without much filler. It’s a great resource for practices that both don’t know where to start when it comes to risk assessment and how to approach the constantly evolving landscape of cybersecurity.
For more information please visit the American Bar Association at https://www.americanbar.org/