How Seriously Should Law Firms Take Cybersecurity?


Law firms across Ireland and the UK are facing new cybersecurity challenges. This blog breaks down some of the key issues that every law firm needs to be aware of


Stryve was proud to sponsor the business session of the Dublin Solicitors Bar Association (DSBA) Annual Conference. We would like to thank the DSBA President, Susan Martin, for extending the warm invitation.

As an ISO 27001 accredited company, we take pride in delivering cutting-edge multi-cloud solutions to clients worldwide.

From our experience working with the legal sector in Ireland and the UK, including the Law Society of Ireland, we understand the unique challenges presented to the industry in managing their responsibility around cybersecurity and data protection.

Whilst this industry is the expert in legal nuances and legislation around handling and storing sensitive information, it can be difficult for its members to discern their risk regarding cyber and information security in an ever-evolving threat landscape.

Adapting to hybrid and remote working, storage, and migration to the cloud, and what to do in the event of a breach are among your top concerns.

Jason Popplewell, the Law Society London
Jason Popplewell, attending the Dublin Solicitors Bar Association Annual Conference 2023 held at the London Law Society London

Last year, the Law Society of England and Wales compiled a list of the 10 biggest challenges facing the legal profession in 2022. It highlighted how law firms must:

1. Work to ensure they can communicate effectively and securely with clients online;

2. Focus efforts on keeping cybercriminals at bay;

3. Ensure that all their IT partners are ISO27001-Certified.


Moreover, in 2021, the Solicitor’s Regulation Authority, the regulatory body for solicitors in England and Wales, revised the minimum terms and conditions of solicitors’ insurance (MTCs) to explicitly exclude losses suffered by the firm because of a cyber breach. The Law Society of England and Wales has highlighted some practical consequences of this. Critically, solicitors have now been put on notice that:

1. They may be liable for losses resulting from a cyber breach;

2. They should consider purchasing cyber insurance.


Now that the GDPR is a familiar concept, the Digital Operation Resilience Act (DORA) is on the horizon presenting a new set of challenges to the legal sector. This new piece of legislation will come into effect on 17 January 2025 and set EU-wide standards for financial institutions as well as third-party ICT providers to comply with.

When 60 per cent of the top 20 legal firms in Ireland reported cyberattacks on their systems (Smith & Williamson Survey 2021), it is vital that solicitors and law firms, whether large or small, are aware of the cyber threats they face and take steps to safeguard their organisations.

Cybersecurity threats span the entire economy. However, the legal sector – like any – experiences unique challenges. Stryve is a trusted and reliable cybersecurity partner for scaling SMEs from financial and legal practitioners to pharma and EU Government Departments.

We help the legal sector identify and mitigate risk. They benefit from an in-house security specialist at a fraction of the cost, delivered by CIO Security Leader of the Year 2023, Paul Delahunty.

Law firms you may be left wondering, how will losses from a breach affect you? Should you consider investing in cyber insurance? Can you securely deliver online solutions to your clients?

We are here to help you answer these questions.

Set up an appointment with our experts today.

Do you have 5 minutes for a quick chat?