About Dottir
Dottir is an agile and adaptable business law firm that operates on the cutting edge of change. Several of Dottir’s six core practice areas and many of their attorneys have been ranked by Chambers and Partners, Legal 500, IFLR1000, and Who’s Who Legal.
Background
Dottir’s clients are ambitious companies and organisations that shape the future for the better. To maintain the trust of their clients, it is an essential priority for Dottir to ensure attorney-client confidentiality in all scenarios. This is why Dottir has set the bar very high in terms of their continuous improvement of cybersecurity management.
Cybersecurity audit
Cyberismo audited Dottir’s cybersecurity management practices in two consecutive years against the requirements from the information security guide published by the Finnish Bar Association.
The audits covered the following areas.
- Information security policy and principles
- Risk management and ensuring business continuity
- Information security training for Dottir staff
- Supplier security
- Protecting communication and customer documents
- Device management
- Identity and access management
- ICT solutions and backups
- Network protection
The audits resulted in a clear understanding of Dottir’s current status against the requirements from the Finnish Bar Association. The audits concluded that a majority of the requirements were already met and lot of improvements were made between the audits. Some needs and opportunities for improvement were also identified, and the company leadership kicked off corrective actions immediately. For the second audit, separate review of corrective actions was organised and all key findings had been addressed within the agreed timeframe.
Testimonial
Maintaining attorney-client confidentiality is critically important for us, so we have been systematically developing our cybersecurity management practices in the long term. To ensure that we are on the right track, we wanted to get an external cybersecurity expert view on our current status. I am extremely happy that we chose Cyberismo for this cybersecurity audit against the requirements of the Finnish Bar Association. The audit process was fast and fluent. The results confirmed many of our existing views, but we also got new insights on how to further develop our cybersecurity management.
Daniel Stranius
Managing Partner, Dottir