Cyber Security Practice

Cyber Security Practice

Dorf Nelson & Zauderer’s Cyber Security practice represents small and large businesses on all Cyber related legal matters, including legal opinion for obtaining cyber insurance, mergers and acquisitions, corporate security audits, regulatory compliance, risk analysis, drafting & reviewing of contracts, incident response as well as, drafting & reviewing of Cyber Security policies, standards, and procedures.

N_P_016Artboard 1 copy 12

Prebreach activities

Prebreach activities are geared toward preventing, detecting, and mitigating security incidents before they occur.

Incident responce

Our trained attorneys are aligned to assist you with effectively responding to the incident, containing the damage, eradicating the threat, and recovering normal business operations.

Postbreach activities

Our Post-breach services provide crucial activities for an organization to recover from a security incident, learn from the experience, and strengthen its cybersecurity posture.


If you have questions for our experts, just leave a request or contact us by contact phone +2 650-603-0553

Dorf Nelson & Zauderer’s Cyber Security practice includes the following service:

Drafting and reviewing of Policies, Standards, and Procedures

The foundation of any cyber security program lies within the documents that support the program. Therefore, it is extremely important to draft policies, standards, and procedures aligned to meet company goals, minimize risks, and meet compliance and regulatory requirements. Our attorneys are well-versed in drafting policies to align with Industry Standard Frameworks such as CMMC, NIST 800-171, NIST 800-53, ISO 27001, CIS Critical Security Controls, and many others.

Regulatory and Compliance Guidance

There is an increased number of compliance and regulatory requirements. Our attorneys are well-versed with state, national and international regulations, and compliance requirements such as SEC SEC rules on Cybersecurity Risk Management, Strategy, Governance, and Incident Disclosure by Public Companies, PCI-DSS, HIPAA, NY Shield Act, HI-Trust, CCMC, EU-GDPR, CCPA, and many others. Our attorneys provide you with your environment-specific guidance to meet compliance and regulatory challenges.

Cyber Security Assessment – Focusing on Frameworks such as NIST, ISO, and CIS Critical Security Controls

An audit tends to make people anxious and often, people don’t share evidence that meets a checkmark for compliance. Such audits do not make an environment stronger from a security perspective. At Dorf Nelson & Zauderer, we engage with our clients to perform an assessment that is not an audit but an assessment that results in a strategic roadmap. Our assessment results are protected under attorney-client privilege.

Drafting and Review of Contracts – Covering cyber and privacy-related requirements

At Dorf Nelson & Zauderer, we provide the best-in-class representation to our clients. When it comes to contract negotiation, our legal team uses a framework that ensures the most favorable contract terms for our client. Our practice includes the most comprehensive list of contract categories that ensures minimal risk from a direct or indirect cyber liability or privacy risk.

Cyber Security Due Diligence – Mergers and Acquisitions

One of the most important aspects of the due diligence process during mergers and acquisitions is the risk introduced to the acquirer through a potential acquisition. Our team of legal experts and security advisors leverages a proprietary assessment methodology to identify any risks that a potential acquirer may introduce to the acquirer. Knowing the gaps in advance helps the organization not only in the negotiations but avoid any risks that may result in a potential data breach in the future.

Incident Response

An organization’s cyber security is only as strong as its incident response plan. A well-drafted incident response plan can help an organization prepare for an incident, and control & contain the situation. Our Legal team drafts the incident response plan aligned with the Cyber Insurance Provider to ensure the company receives the right help and avoids any unforeseen circumstances such as reputation damage, denial of insurance claims, etc. Dorf Nelson & Zauderer Incident Response team not only helps an organization during the most difficult time of breach but also conducts best-in-class executive tabletops based on the industry’s best practices.

Learn More

Click Here for Table Top

Security Awareness Training

Our team of specialists provides customized training sessions to educate your employees, legal teams, and C-suite leadership on various Cyber Security Areas, including but not limited to Data Security Best Practices, Regulations & Compliance, Incident Response, and a range of other topics.

If you require assistance with a Pre- or Post- Breach Situation, contact us now! For immediate assistance, call us at (914) 381-7600!

Unsolicited e-mails and information sent to Dorf Nelson & Zauderer will not be considered confidential, may be disclosed to others pursuant to our Privacy Policy, may not receive a response, and do not create an attorney-client relationship with Dorf Nelson & Zauderer. If you are not already a client of Dorf Nelson & Zauderer, do not include any confidential information in this message. Also, please note that our attorneys do not seek to practice law in any jurisdiction in which they are not properly authorized to do so.

    Cyber Breach Response Hotline:

    call us 24/7

    email us 24/7

    Group Head, Cybersecurity and Data Privacy Practice Group

    Cybersecurity, Data Privacy and AI Practice Group

    Managing Partner
    Co-Chair, Commercial Real Estate & Land Use Department

    Co-Chair, Commercial Litigation Department

    Cyber Security Practice

    Cyber Security Practice

    Cyber Security Practice

    Senior Counsel
    Cyber Security Practice

    Bernadette M. Silverstein

    Montana Nelson

    Are You In need of legal help?

    +2 650-603-0553 Or Book Appointment

    +2 650-603-0553