Signed in as:
filler@godaddy.com
Structured approach to business risk management
A legal services business engaged Resilient Business to add a structured approach to IT Disaster Recovery.
After an initial ITDR gap assessment, we determined they had fundamental business continuity vulnerabilities beyond just IT. We introduced our 5 phase resilience program strengthening everything from emergency planning to facilities redundancy. Recognising their exposure, the business approved Phase 1 to commence immediately.
In just 8 weeks, the business has implemented offsite cloud backups, expanded internet provider redundancy to avoid outages, formalised remote work policies ensuring productivity anywhere, and defined maximum tolerable downtime for key systems like their document management platform.
Employees also engaged in incident response plan training and simulation.
By proactively closing critical gaps through our early-stage resilience roadmap before disaster strikes, the business has mitigated significant risk while laying the foundation for the later program stages enacting their vision of an highly resilient firm built to withstand unprecedented threats.
Comprehensive review of IT services at law firm
An ABS law firm engaged our services to conduct a comprehensive review of their IT services and service provision across the firm. The key objective was to analyse the current state of IT performance, infrastructure, and contracts in place to support operations and identify opportunities for improvement and cost savings.
Our process involved extensive stakeholder interviews across all departments, including fee earners, Directors, IT staff, administrators, and support staff. We asked questions to understand pain points with current systems and services, where breakdowns occur, how efficient operations are, and future IT needs to support the growth of the firm.
Additionally, we conducted an in-depth analysis of all technology vendor contracts, including telephony, internet, desktop support and licensing, cloud storage and backup, cybersecurity services, practice management software, and more. This enabled us to get a clear picture of spending and whether the firm is getting optimal value from vendors.
We assessed the firm’s IT infrastructure and systems performance looking at metrics like uptime, response times, access speeds, and incidence of issues. We also evaluated endpoints, servers, network equipment and mapped dependencies to identify vulnerabilities.
Our engagement delivered a comprehensive report summarising our findings and outlining over 30 specific recommendations to improve operations, security, resilience and cost-savings. Some key recommendations included consolidating contracts, moving certain workloads to the cloud, implementing cyber insurance, and investing in IT automation to gain efficiencies.
Our review provided the firm with an objective 3rd party analysis of the current state along with an actionable plan to ensure IT is positioned to support the firm’s growth objectives.
At Resilient Business, we provide comprehensive IT solutions to help your business succeed. Our team of experienced professionals can help you with everything from network infrastructure design to cloud migration and software development. We take a personalised approach to every project, working closely with our clients to develop solutions that meet their specific needs.
Shortlisting, selection and onboarding of new MSP
Our client wanted to identify a new managed IT services provider (MSP) that could meet their needs at a competitive price. They engaged our services to facilitate the evaluation and selection process, negotiate commercial terms, and support the onboarding of the new provider.
We conducted in-depth market research and reached out a number of regional and national MSPs to gauge their interest and qualifications. Through remote video interviews, we screened numerous providers against our client’s requirements including security capabilities, support for cloud migrations, sector experience, and breadth of services offered.
After the initial screening, we shortlisted the top 5 MSP candidates and created a scoring matrix based on pricing models, technical expertise, customer satisfaction, and cultural fit. The client participated in beauty parading sessions where each provider presented their proposal and offerings. Our team assisted with preparing tailored demonstration agendas and sample use cases to assess the MSPs’ responses.
Following the beauty parades, we managed the negotiation process to obtain competitive pricing models, account management structures, and service levels.
We assisted the client with onboarding the chosen MSP by outlining the implementation roadmap, introducing teams on both sides, and governing progress through regular steering committee meetings. The complex onboarding project spanned network assessments, firewall migrations, endpoint upgrades, cloud IaaS configuration, staff training, and policy realignment.
Our engagement provided the client with an efficient evaluation process resulting in the selection of an ideal technology partner. Our guidance during selection and onboarding enabled a smooth transition of IT services.
Advice on security posture for law firm
A mid-sized law firm wanted to enhance their cybersecurity defences to protect client data and ensure compliance. They engaged our services to assess their IT infrastructure, systems, and staff practices related to information security and provide guidance on improvements.
We conducted interviews with IT administrators and examined their network perimeter protections, endpoint security tools, backup systems, access controls, and staff security training. Our review discovered several high risk gaps - lack of encryption on devices holding sensitive client data, improper firewall rules allowing risky traffic, inadequate endpoint threat detection, and lack of security awareness among lawyers that could make them susceptible to phishing.
To address these issues, we devised a comprehensive security hardening plan focused on technology, process and people. On the technology front, we assisted with implementing advanced email filtering to detect suspicious attachments and URLs. We also recommended next-gen antivirus on all endpoints to continuously monitor threats. For improved backup and recovery, we recommended an automated cloud-based system with immutable storage.
Threats often start with people, so we instituted security training to help staff identify risky behaviours. Lawyers were required to complete simulated phishing tests to increase vigilance. To ensure alignment across the firm, we formulated information security policies as well as incident response runbooks for IT to follow during attacks.
The implementation of our recommendations significantly enhanced the firm’s posture. The introduction of new controls closed critical gaps, while upgrading tools improved prevention and detection capabilities. Formal policies now mandate regular staff training and technology risk assessments to address evolving threats. Ongoing third-party penetration tests validate defences, completed remediations, and a security-conscious culture firm-wide.
Our security transformation empowered the firm to confidently demonstrate diligence to clients while proactively protecting sensitive data. They can now focus on core legal work knowing the firm has resilience against sophisticated cyber risks. Ongoing enhancements ensure they meet legal industry security standards and maintain compliance.
Review of Services and development of target operating model
A rapidly scaling smaller law firm wanted to improve efficiency and position their back-office to support aggressive growth objectives over the next five years. They engaged us to thoroughly review current processes and systems and devise a future-state operating model for the IT organisation.
We conducted in-depth interviews with a number of stakeholders spanning lawyers, paralegals, IT staff, records personnel and business operations. Discussions centred on pain points with existing tools, workflow bottlenecks, and technology needs required to meet service requirements as headcount and demand increases.
Our assessment identified several strengths the firm could further leverage including security awareness, reliable help desk ticketing systems, and strong vendor management capabilities. However, we uncovered gaps in utilising automation, outdated business applications constraining productivity, and inadequate resourcing plans.
We defined a modernised target operating model emphasizing automation, system consolidation, and optimised project and organisational structures. We provided an executable roadmap to guide vendor selection, new technology implementation, upskilling staff, and instituting performance metrics to track progress towards modernisation goals.
Our operating model review and recommendations provided objective analysis based on industry best practices to inform strategic decisions and technology investments.
