Attorneys and Legal Professionals Duty of Care Risk Assessments for Reasonable Security

Establishing Duty of Care for Cybersecurity

Attorneys and Legal Professionals Duty of Care Risk Assessments – The day you are sued for a data breach, you will be asked eight questions that you will want to prepare your organization or client for; attorneys should be know how to address.

Data Breaches are litigated in terms of negligence. Judges and interested parties are trying to determine if your organization/client was doing something reasonable to prevent harm to others.

DoCRA (Duty of Care Risk Analysis) is a standard by which organizations may align their risk assessments to demonstrate reasonable and appropriate. The standard includes a method for organizations to clearly calculate and prioritize risk as well as define acceptable risk.

Do You Know Reasonable?

As attorneys or legal professionals, if you are looking for assistance in bringing your risk method in line with Duty of Care Risk Assessments DoCRA (, we can help establish ‘reasonable’.

HALOCK supports you with Regulatory Advisory, Advisory & Strategic Planning, Breach Response, Litigation, Post Breach Risk Assessment services.

For clients that follow CIS Controls, download CIS Risk Assessment Method (RAM):

download CIS RAM

HALOCK is headquartered in Schaumburg, IL, in the Chicago area and advises clients on information security strategies, risk assessments, PCI, HIPAA, and Privacy compliance, penetration testing, security management and architecture reviews, and compliance throughout the US. HALOCK partners with you to establish reasonable security controls based on your organization’s mission, objectives, and obligations.

Contact Us