Keesal, Young & Logan (KYL) and Privva, Inc. have successfully implemented EDRM’s new Security Audit Questionnaire to complete the security assessment of KYL’s third-party eDiscovery providers.
By capitalizing on Privva’s automated security assessment platform, KYL was able to streamline the process of distributing and scoring the results of the Questionnaire in a fraction of the time typically required.
On March 8, 2017, EDRM, part of the Center for Judicial Studies at Duke Law School and the top standard-setting organization for the eDiscovery market, released its new standardized Security Audit Questionnaire, designed to assess the security capabilities of cloud providers and third parties who offer electronic discovery or managed services. The Questionnaire focuses on seven crucial security areas for audit.
“Vendor security is a critical component to our cybersecurity strategy as we continue to expand to the cloud,” said Justin Hectus, CIO/CISO of KYL, who participated in the creation of the Questionnaire. “Implementing the new Questionnaire on the Privva platform benefits both law firms and their vendors, by efficiently identifying and tracking areas of high risk across vendor networks. Leveraging Privva to rapidly implement this process also enables us to collect feedback that we can provide to EDRM for consideration in subsequent versions of the Questionnaire.”
EDRM’s Questionnaire assesses the potential risk of giving a vendor access to sensitive data by evaluating their internal security practices. Privva automates the assessment process, allowing companies to perform security risk assessments in record time. The new Security Audit Questionnaire, combined with the automation provided by Privva, raises the bar for assessing the cybersecurity risk of eDiscovery providers.
Copyright © 2023 Legal IT Professionals. All Rights Reserved.