Small, Midsized Firms Take No Frills, Budget-Friendly Approach to Remote Work
Caught off guard by the change to remote working, many midsized and small firms are now adopting low-cost solutions to meet the new cybersecurity demands of this new business reality.
May 20, 2020 at 12:00 PM
3 minute read
The ongoing stay-at-home mandates have quickly made remote working a reality for many law firms. But initially, some smaller and midsized firms were caught flat-footed by the government orders.
"Smaller to midsize firms have had to respond and weren't prepared for this on scale," said Mark Sangster, vice president and industry security strategist at managed detection and response provider eSentire.
Over the past few months, midsized firms and boutiques had to readjust their cybersecurity practices and lean more on third-party tech experts to meet the new cybersecurity challenges of work spaces spread outside the office.
Many of these firms shifted from a central office model to a dispersed workforce by investing in VPNs and remote access technology and leveraging multifactor authentication, Sangster said.
He added that midsized firms also began investing in endpoint security, while many midsized and small firms began deploying administrative tactics to curve cyber risk, including addressing employees' Wi-Fi security.
"Now that we're working from home, we have internet routers that are consumer-grade, and they don't have the same price point and security [as the firm's internet connection]. It's far more easily exploited," he explained.
In response, small and midsized firms often tell employees and lawyers to change their routers' default password and set their Wi-Fi to private.
"This is where the firm and employee have to step up and beef up their technology with the tools they have. People aren't going to buy six-figure firewalls for their home, and most law firms won't [buy it for them] either. Perhaps you may do that for particular rainmakers, but not your entire employee base," Sangster said.
Law firms are learning how to adjust their cybersecurity tactics primarily from third parties, said Ken Jenkins, principal and founder of cybersecurity provider EmberSec.
"I haven't seen an uptick in more sophisticated software and products per se, but the advisory is definitely blowing up, helping them understand their threats as they have a remote workforce," he said.
Pennsylvania midsized firm McNees Wallace & Nurick, for instance, has brought in vendors to audit its security settings and it added more multifactor authentication protections, said Stephen Sobotta, the firm's chief information officer.
McNees Wallace also encouraged greater cyber awareness by leveraging a vendor that sends phishing alerts and messages to test staffers and attorneys. "If we can increase our user awareness their increased awareness adds to our depth of security and that's as important as adding additional layers of software, if you can stop an incident at the user," Sobotta said.
Not all firms are hiring extra expertise, however. Some are instead leveraging available resources.
Nicole Gueron, founding partner of 11-lawyer Clarick Gueron Reisbaum, for example, said she and her lawyers participated in CLE remote arbitration and Zoom training to meet the demands of working remotely. Additionally, while she's previously used an on-demand IT provider, as the firm works remotely "we've leaned on him harder to advise us" on cybersecurity best practices, she said.
Gueron said she wasn't sure what new tech-based steps she would take if mandates and safety concerns kept her staff out of its New York City-based offices for six or more months.
"Right now we are not intending on spending more, but if we've learned one thing from this situation, it's thinking we know what to expect in the future can be dead wrong."
This content has been archived. It is available through our partners, LexisNexis® and Bloomberg Law.
To view this content, please continue to their sites.
Not a Lexis Subscriber?
Subscribe Now
Not a Bloomberg Law Subscriber?
Subscribe Now
NOT FOR REPRINT
© 2025 ALM Global, LLC, All Rights Reserved. Request academic re-use from www.copyright.com. All other uses, submit a request to [email protected]. For more information visit Asset & Logo Licensing.
You Might Like
View AllTrending Stories
- 1Plaintiff Argues Jury's $22M Punitive Damages Finding Undermines J&J's Talc Trial Win
- 2Bannon's Fraud Trial Delayed One Week as New, 'More Aggressive,' Defense Attorneys Get Ready
- 3'AI-Generated' Case References? This African Law Firm Is Under Investigation
- 4John Deere Annual Meeting Offers Peek Into DEI Strife That Looms for Companies Nationwide
- 5Why Associates in This Growing Legal Market Are Leaving Their Firms
Who Got The Work
J. Brugh Lower of Gibbons has entered an appearance for industrial equipment supplier Devco Corporation in a pending trademark infringement lawsuit. The suit, accusing the defendant of selling knock-off Graco products, was filed Dec. 18 in New Jersey District Court by Rivkin Radler on behalf of Graco Inc. and Graco Minnesota. The case, assigned to U.S. District Judge Zahid N. Quraishi, is 3:24-cv-11294, Graco Inc. et al v. Devco Corporation.
Who Got The Work
Rebecca Maller-Stein and Kent A. Yalowitz of Arnold & Porter Kaye Scholer have entered their appearances for Hanaco Venture Capital and its executives, Lior Prosor and David Frankel, in a pending securities lawsuit. The action, filed on Dec. 24 in New York Southern District Court by Zell, Aron & Co. on behalf of Goldeneye Advisors, accuses the defendants of negligently and fraudulently managing the plaintiff's $1 million investment. The case, assigned to U.S. District Judge Vernon S. Broderick, is 1:24-cv-09918, Goldeneye Advisors, LLC v. Hanaco Venture Capital, Ltd. et al.
Who Got The Work
Attorneys from A&O Shearman has stepped in as defense counsel for Toronto-Dominion Bank and other defendants in a pending securities class action. The suit, filed Dec. 11 in New York Southern District Court by Bleichmar Fonti & Auld, accuses the defendants of concealing the bank's 'pervasive' deficiencies in regards to its compliance with the Bank Secrecy Act and the quality of its anti-money laundering controls. The case, assigned to U.S. District Judge Arun Subramanian, is 1:24-cv-09445, Gonzalez v. The Toronto-Dominion Bank et al.
Who Got The Work
Crown Castle International, a Pennsylvania company providing shared communications infrastructure, has turned to Luke D. Wolf of Gordon Rees Scully Mansukhani to fend off a pending breach-of-contract lawsuit. The court action, filed Nov. 25 in Michigan Eastern District Court by Hooper Hathaway PC on behalf of The Town Residences LLC, accuses Crown Castle of failing to transfer approximately $30,000 in utility payments from T-Mobile in breach of a roof-top lease and assignment agreement. The case, assigned to U.S. District Judge Susan K. Declercq, is 2:24-cv-13131, The Town Residences LLC v. T-Mobile US, Inc. et al.
Who Got The Work
Wilfred P. Coronato and Daniel M. Schwartz of McCarter & English have stepped in as defense counsel to Electrolux Home Products Inc. in a pending product liability lawsuit. The court action, filed Nov. 26 in New York Eastern District Court by Poulos Lopiccolo PC and Nagel Rice LLP on behalf of David Stern, alleges that the defendant's refrigerators’ drawers and shelving repeatedly break and fall apart within months after purchase. The case, assigned to U.S. District Judge Joan M. Azrack, is 2:24-cv-08204, Stern v. Electrolux Home Products, Inc.
Featured Firms
Law Offices of Gary Martin Hays & Associates, P.C.
(470) 294-1674
Law Offices of Mark E. Salomone
(857) 444-6468
Smith & Hassler
(713) 739-1250
