Our Approach
Dorf Nelson & Zauderer's Cyber Security practice represents small and large businesses on all Cyber related legal matters, including legal opinion for obtaining cyber insurance, mergers and acquisitions, corporate security audits, regulatory compliance, risk analysis, drafting & reviewing of contracts, incident response as well as drafting & reviewing of Cyber Security policies, standards, and procedures.
Key Service Areas
- Policies, Standards & Procedures drafting — alignment with CMMC, NIST 800-171, NIST 800-53, ISO 27001, and CIS Critical Security Controls
- Regulatory and Compliance Guidance — SEC cybersecurity rules, PCI-DSS, HIPAA, NY SHIELD Act, HI-Trust, CCMC, EU GDPR, CCPA
- Cyber Security Assessment — NIST, ISO, and CIS frameworks with strategic roadmaps protected under attorney-client privilege
- Drafting and Review of Contracts — cyber and privacy-related requirements with minimized risk
- Cyber Security Due Diligence — M&A risk identification using proprietary assessment methodology
- Incident Response — plan drafting aligned with cyber insurance providers and executive tabletop exercises
- Security Awareness Training — customized sessions on data security, regulations, and incident response