-
ROOX
Law firms investments in security have been a concern in the last years. Although this is very positive, investments in security are still seen as a necessary cost, but one that does not add value to the lawyer's daily operation, and even complicates their already complicated life. For this reason, it can be seen that investments are generally made in an occasional, isolated and reactive manner, without a holistic and planned vision and without much participation and training of users.
Firstly, it must be understood that information security is not limited to controlling access to computers or ensuring that there are firewalls to mitigate possible external attacks. Information Security is based on three pillars, namely confidentiality, integrity and availability, which together safeguard business continuity, in addition to the adoption of technology.
An Information Security system does not guarantee 100% that nothing happens, but it does guarantee that there are identified risks, for which there are mechanisms to mitigate them. However, for this, it is necessary that the information that is handled is identified as to its content, actors, form of transmission, filing or safeguarding.