skip to main content
Experience List
DWT
  • Email Page
  • Create PDF
  • Print Page

Privacy & Security: Confidential Risk Assessment

Risk assessments allow your company to better understand its data security risks, make informed decisions about your security program, and prioritize your security efforts. A proper risk assessment is the cornerstone of a successful information security program and, in addition to being a good business practice, is often legally required.

DWT offers a targeted assessment service based on the NIST 800-30 specification that is designed to be protected by the attorney-client privilege to the fullest extent permitted by law.

Why Does Your Company Need a Risk Assessment?

  • A risk assessment can help your company understand its risk profile and effectively communicate the security risks to the company’s management team and board of directors.
  • Formal risk assessments are required by many regulations and contractual provisions, including but not limited to HIPAA’s Security Rule, the Payment Card Industry Data Security Standard (PCI DSS), and many state-mandated data security statutes, and recommended by the Federal Trade Commission.
  • A risk assessment can help your company save time and resources.
  • A risk assessment can help your company identify and prioritize the appropriate data security risk mitigation efforts.

Why Davis Wright Tremaine?

  • Our risk assessment engagement is designed to be protected by the attorney-client privilege to the fullest extent permitted by law.
  • Our experienced data security attorneys can provide real time counseling on applicable regulatory and contractual requirements.
  • Our targeted assessment is based on the nationally recognized NIST SP 800-30 specification.
  • We prepare a confidential report that can be used to help your company evaluate its data security compliance and legal risks.
  • Our risk assessment process is repeatable and your assessment data is available to you for future risk assessments.

Davis Wright Tremaine Can Help
Our team of experienced privacy and data security attorneys can help you implement a repeatable risk assessment that is targeted to the data security laws relevant to your company. We offer a fixed fee and tiered model that allows us to offer a customized Confidential Risk Assessment with a predictable budget. 

Privacy 101 videos
Blog for insight and commentary on information management and protection