Incident Readiness Legal Assessment

Assessment Services

DWT attorneys have advised clients on hundreds of data security incidents, including enterprise ransomware attacks, sophisticated state-sponsored campaigns and multimillion-dollar business email compromises, among many others. This experience has shown us firsthand the key differences between companies that truly are prepared to respond to an incident and those that are not. It also enables us to benchmark our clients' practices against other companies similarly situated, based on both industry sector and risk profile.

We have designed our Incident Readiness Legal Assessment to help clients identify and address crucial gaps in their incident response planning at fixed-fee pricing. The Assessment includes the following services:

 

Incident Response Plan (IRP) Review
A clear, actionable IRP is crucial to successful incident response. We will review your IRP and help you transform it into a document that truly will help guide you through an incident.
Assessment of Reporting Obligations
Cyber incident reporting and data breach notification obligations are proliferating at the state and federal levels. We'll help you identify the obligations that may apply to you so that you can be sure to address them in the event of a security incident.
IR Vendor Pre-Engagement
We will identify the types of vendors that you are likely to need to respond to an incident effectively, including providers of digital forensics, e-discovery and data mining, system recovery and IT staff augmentation, and cyber extortion negotiation services, and we will prepare the materials needed to engage those vendors on a moment's notice (substantially customized agreements may require additional services at hourly rates). DWT has existing relationships with many of the most reputable, experienced, and sophisticated firms in these spaces and can work with other vendors of your choice as well.
Attorney-Client Privilege and Work Product Preservation
When an incident occurs, companies must take immediate action to preserve attorney-client privilege and attorney work product protection. As part of our IRP review, we will provide you with guidance on communications practices and controls for safeguarding confidential information and invoking discovery privileges from the beginning of the investigation. When pre-engaging vendors, we will help you structure engagement materials to bring vendors' work under discovery privileges, where applicable.

24/7 Breach Response Team

Our information security and incident response attorneys provide clients across many industries with forward-thinking, actionable, and holistic advice—which means empowering them to be ready for when a data breach occurs.

Assessment Contacts

Borgia, Michael
Michael T. Borgia
Partner
Washington, D.C.
202.973.4282

Contact Us

We're here to help. Email us with any questions or comments and we'll get you connected to the right person.