Technology-driven law firm leads the industry as an early adopter of global information security management standards
PASADENA – June 30, 2015 – Hickey Smith LLP, a law firm designed to deliver legal services with significantly greater efficiency, consistency, and added value, today announced that the firm has been awarded International Standard Organization (ISO) 27001 Certification from SRI, an accredited registrar.
ISO 27001:2013 is an internationally accepted set of standards for information security management, which helps organizations keep information assets secure. Certification is only awarded to companies that can meet the standard as judged by accredited, independent auditors. Comprehensive in scope, Hickey Smith’s certification emphasizes its robust information security management system (ISMS) which enables the firm to control the:
- Secure access, storage and transmission of sensitive information;
- Protection of business assets containing sensitive information;
- Strict physical and logical access control to sensitive information; and
- Management of business processes which support the firm’s information technology infrastructure.
“Law firms continuously collect highly sensitive and confidential information, and in an era of widespread cyber attacks and security threats, protecting that data has never been more important,” said Howard S. Hoffmann, executive director of Hickey Smith. “Safeguarding the security and confidentiality of our client’s information is a key
component of the firm’s core values, and we are pleased that Hickey Smith has been recognized for implementing an ISMS that adheres to global standards and qualifies for such a respected accreditation.”
Adoption of ISO security standards is relatively new in the legal sector, with fewer than 25 U.S. law firms reporting having achieved ISO 27001 certification1. As technology use increases among law firms, corporate counsel are increasingly examining the security practices of outside counsel to ensure essential enterprise data isn’t vulnerable to data breaches and cyber attacks.
“Attorneys have direct responsibility for information security and managing the information they collect from and about their clients,” said David M. Hickey, managing partner of Hickey Smith. “Achieving this certification emphasizes Hickey Smith’s commitment to protecting client data and demonstrates that our firm has put comprehensive policies, protocols, and processes into place to properly secure our clients’ data and confidences.”
An independent, third party audit by SRI found Hickey Smith to have the requisite technical controls in place and formalized security policies and procedures that comply with internationally recognized standards. SRI, one of the leading certification bodies for management systems, is accredited by ANAB (previously ANSI-RAB), RvA (C074), IATF, and ITsmf/APMG.
About Hickey Smith
Hickey Smith is a law firm purposely designed to deliver legal services with significantly greater efficiency, consistency, and added value. By deconstructing and refining traditional legal processes, applying workflow technology, and collecting and analyzing data, Hickey Smith is transforming the way legal services are delivered today. With an unrivaled combination of disciplined processes, technology expertise, and business leadership, Hickey Smith clients benefit from reduced total legal spend, improved quality, enhanced transparency, actionable insight, simplified management of outside counsel, and increased control. For more information, visit hickeysmith.com.download pdf