What Security Nightmares Keep Law Firm Management Up at Night

Level: Advanced
Runtime: 63 minutes
Recorded Date: March 22, 2018
Click here to share this program
Download PDF


  • The client's reaction to the rise in cybercrimes
  • The request for the completion of information security questionnaires by law firms
  • The confidentiality issues associated with information collected
  • The lawyer's duty of competence in technology matters
Runtime: 1 hour
Recorded: March 22, 2018


Take this program to learn about the risks of cyber crimes and how to prepare and protect your clients.

Lloyd's estimates that a hack which takes down a single cloud service provider could see cumulative losses up to $121 billion. Other potential viruses affecting computer operating systems for many global businesses could come with price tags in the billions. The majority of these losses are not insured, which would leave governments and businesses vulnerable if cyberattacks happen. The uninsured gap is huge and the exact amount unknown.

This program will focus on what legal steps organizations should take to prepare for and prevent attacks as well as what response options are available.

This program was recorded on March 22nd, 2018.

Provided By

American Bar Association


Bret Padres


Bret has more than 25 years of experience in information security, digital forensics, law enforcement, electronic discovery, and counterintelligence. He has worked on some of history’s most notorious retail and state-sponsored data breaches.

As a Special Agent in the U.S. Air Force Office of Special Investigations, he was the lead agent on numerous national and international computer intrusion investigations. He has also served as Chief of Research and Development in the Computer Crimes Unit for the U.S. Postal Service Office of the Inspector General, where he conducted investigations and implemented new computer crime analysis and prevention technologies.

In the private sector, Bret was most recently a managing director at Stroz Friedberg, a leading global risk management firm, where he ran its cyber resilience practice. Bret was also the Director of Incident Response for Mandiant, where he responded to and resolved high-risk intrusions for government agencies and Fortune 500 companies, and he served as the Director of Cyber Operations at Athena Innovative Solutions, where he ran network surveillance and intrusion detection counterintelligence operations for the company’s U.S. government clients.

Nicole M. Reid

Klein Glasser Park & Lowe, P.L.

Nicole Reid is a member of Klein Glasser Park & Lowe, P.L.’s professional liability division. Her practice focuses primarily on litigating professional malpractice matters, predominantly defending lawyers and accountants. She also represents lawyers facing bar grievances, fee disputes, disqualification attempts, and defamation claims.

Nicole is an active member of the Dade County Bar Association, currently sitting on the Board of Directors. She also often serves on awards selection and host committees for the DCBA’s signature events, including Legal Luminaries, Over the Rainbow, Bench and Bar, and Women of Distinction. She is also active in the American Bar Association’s Professional Liability Litigation section.

Nicole earned her Juris Doctor, magna cum laude, from the University of Miami School of Law while on a full Dean’s Merit scholarship. While in law school, Nicole was a member of the Business Law Review, where she served as an Articles and Comments Editor. She also won several book awards, and was on the Dean’s List for two semesters.

Prior to joining Klein Glasser Park and Lowe, Nicole worked as an associate at an insurance defense firm for several years. While in law school, she worked as a law clerk at a plaintiff’s personal injury firm, and as a tutor for students preparing to take the LSAT. Nicole also served as a judicial intern to the Honorable Sandy Karlan at the Eleventh Judicial Circuit Court, Family Division. Before embarking on a legal career, Nicole worked in the broadcast television field, producing television pilots, infomercials, and news broadcasts.

Ashley L. Hart

Claims Consultant - Cyber/Media/Tech
CNA Insurance

Ashley L. Hart is a Claims Specialist for CNA's Cyber, Media & Technology Group. Ashley handles both primary and excess first-party cyber and third-party specialty professional liability, security and privacy, and media claims. Her primary responsibilities include evaluating coverage obligations and providing detailed analysis of security and privacy crisis management, technology, media and internet professional liability policies. She works closely with Insureds, risk managers, corporate counsel, and outside counsel in all aspects of data breach incident response and litigation.

Prior to joining to joining CNA, Ashley worked at AIG as a Senior Claims Analyst in their Cyber, Media & Technology Group.

Ashley received her JD at the New York Law School in 2013.

Karen Randall, Esq.

Founder & Chair of the Cybersecurity and Data Privacy Practice
Connell Foley LLP

Karen Randall is founder and chair of the Cybersecurity and Data Privacy practice, co-chair of the Professional Liability practice and a senior trial counsel at Connell Foley. She represents clients in complex litigation, and regulatory compliance and defense matters involving cybersecurity, data protection and privacy, social media and professional liability. Karen also has substantial experience with employment law, business litigation and insurance law. She provides counsel and advocacy in federal and state courts for both professionals and businesses across a broad range of industries.

Karen has an extensive background counseling lawyers and law firms, health care entities, financial institutions and retail clients by providing proactive plans to address the myriad cyber risks they each face. She serves as a "breach response coach" across various industries, as well as for cyber insurance carriers, and offers strategic solutions related to post-breach matters including statutory notification requirements, class action litigation, regulatory enforcement actions, forensics and crisis management. Karen also helps companies conduct risk/security assessments, as well as implement data security and information governance policies and procedures, and security awareness training for employees.

In addition, Karen maintains a strong professional liability practice, working closely with law firms, health care and assisted living institutions, architects and engineers, directors and officers and accountants. In her complex litigation work, she handles premises liability matters for major retailers and substance abuse treatment centers as well as amusement parks, concert venues and bowling centers. She defends these entities against diverse claims, including significant sexual molestation and elder abuse matters.

A member of the International Association of Privacy Professionals (IAPP) and co-chair of its New Jersey KnowledgeNet Chapter, Karen is integral to numerous efforts to educate lawyers on information security and the ethics of data protection. She received two ABA presidential appointments to serve on the Cybersecurity Legal Task Force and the Standing Committee on Lawyer’s Professional Liability. She is a founder and co-chair of the New Jersey State Bar Association’s Cybersecurity Legal Task Force. Karen also serves as vice chair of the USLAW Network Cybersecurity and Data Privacy Group and co-chaired the Claims and Litigation Management Alliance's (CLM) NYC Cyber Summit. In addition, she is a member of the HIMSS' Security and Privacy committee. Most recently, Karen was selected by Bloomberg BNA to serve as its New Jersey Contributing Editor on cyber and privacy issues for Bloomberg Law: Privacy & Data Security, focusing on the regulatory and compliance landscape of data protection laws in the U.S. and around the world.

A Fellow of the American Bar Foundation, Karen was appointed by Chief Justice Stuart Rabner to serve on the Board on Civil Trial Certification.

Karen's commitment to leadership, frequent speaking and writing underscore her trailblazing impact on the cybersecurity landscape.

Similar Courses

Card image cap
92 minutes
#MeToo: Empowering Employees and Employers to Address Workplace Sexual Harassment & Violence
Join our expert attorneys as they discuss how employers can work to prevent and eliminate sexual harassment and violence in their workplace, and create an environment in which employees are able to respond to and report incidents without fear of retaliation. Not only is there a deep moral imperative to rectify sexual harassment in the workplace and promote an equitable work environment, but also there is significant monetary liability as a potential consequence for employers who fail to address harassment in the workplace.

American Bar Association


Add to Cart
Card image cap
77 minutes
§ 363 Sale Issues
Dive into Section 363 sales issues, including whether there are limits to “free and clear”; the GM conflict between Sections 365(h) and 363(f) (“lease-stripping”); sales free and clear of leasehold interests, restrictive covenants and override royalties; being free and clear of successorships in CBAs; selling free and clear of environmental liabilities (La Paloma, Exide); and loan-to-own strategies.

American Bankruptcy Institute


Add to Cart
Card image cap
63 minutes
2018 CA Consumer Privacy Act: The Big Tail Wagging the U.S.
In this session, two leading information governance attorneys will share why you need to and how you can be ready.



Add to Cart
Card image cap
60 minutes
2019 HIPAA Update: Enforcing Privacy & Security Standards
In this session, we will discuss the most critical issues in the HIPAA update and best practices for enforcing privacy & security standards in your company.



Add to Cart
Previous Next