Cybersecurity - 2025 Virtual Conference

Introduction

As cyber threats become more sophisticated and persistent, the legal sector faces mounting pressure to strengthen its digital defences. This virtual conference brings together expert speakers to equip in-house counsel and private practice lawyers with the knowledge and tools needed to navigate today’s complex cybersecurity landscape.

From breach response and legal liability to emerging AI risks and secure procurement, each session offers practical guidance tailored to the realities of modern legal practice. Chaired by Peter Wright, the event provides a timely opportunity to stay ahead of evolving threats and regulatory expectations.

Conference Agenda

This live and interactive 5-hour conference will cover the following:

10am-11am: The Cyber Breach Response Kit for Legal Services

Peter Wright, Solicitor & Managing Director, Digital Law

If your organisation is subject to a cyber-attack, what do you need to do? What are your priorities and what key decisions need to be made? This session sets out your options including all the necessary legal and regulatory requirements with case studies to illustrate how not to do it.

• Identifying an attack - when is a breach not a breach?
• Confirming the chain of command
• Who needs to be notified?
• Don't sit on it - case study & ICO enforcement

Morning Break

11:10am-12:10pm: The Digital Underworld: Cyber Threats Facing the Legal Sector

Stephen Hill, Managing Director, Hill Bingham Ltd

As cybercriminals increasingly target law firms for the sensitive data they hold, the legal sector has become a prime focus for sophisticated digital threats. This session will examine the evolving cyber risk landscape facing legal professionals, including ransomware, data breaches, insider threats, and supply chain vulnerabilities.

Attendees will gain insight into recent attack trends and regulatory expectations, as well as learning about the practical steps firms can take to strengthen their cyber resilience and incident response strategies in an environment where reputational and legal stakes are high.

12:10pm-1:10pm: AI is Evolving Fast — And So Are the Cyber Risks

Jimmy Desai, Consultant Solicitor, Keystone Law

Artificial intelligence is rapidly moving from experimental to essential — powering decisions, systems, and services across nearly every sector. But as adoption increases, so too does exposure: to cyber threats, governance gaps, and legal uncertainty.

This session is designed to help legal, risk, and compliance professionals cut through the complexity. We’ll explore how AI is changing the way organisations must think about cybersecurity, responsibility, and operational risk — and how legal and leadership teams can stay ahead of the issues that matter most.

Learning objectives include:

• Risks: Gain a clearer understanding of the legal and operational risks introduced by AI in cybersecurity contexts
• Liability: Hear about insights into accountability and liability when things go wrong with AI-powered systems
• Solutions: Benefit from practical ideas to strengthen governance, contracts, and internal oversight in the face of fast-moving technological change

Whether you're advising on AI, working with digital infrastructure, or helping shape strategy, this session will help you ask sharper questions, identify pressure points early, and make better-informed decisions.

Break for lunch

2pm-3pm: Cybercrime, Litigation & Liability: Navigating the Legal Fallout of a Breach

Charles Ciumei KC, Essex Court Chambers

As cyber-attacks grow in scale and sophistication, legal professionals face increasing pressure to manage the fallout effectively when a breach occurs. This session will explore the evolving legal landscape surrounding cyber incidents, focusing on key challenges such as regulatory compliance, potential liability, and civil litigation risks.

It will also consider the practical steps organisations should take to minimise exposure, from incident response and notification obligations to preserving legal privilege and managing third-party relationships. With particular attention to board-level accountability and emerging legal trends, the session offers timely insight for those navigating the legal complexities of cybersecurity in 2025.

• Key obligations post-Breach: e.g. UK GDPR, DPA 2018, potential litigation and regulatory risks
• Attribution and Accountability: Challenges in identifying attackers, assigning internal responsibility, and managing third-party liability
• Litigation Risks: Typical civil claims (breach of confidence, misuse of private information, negligence, breach of contract), defences, and recent legal trends
• Managing Response and Legal Risks: Importance of swift notifications, preserving evidence, maintaining legal privilege, and coordinated incident management to minimise harm
• Boards and Individual Liability: Directors' cyber governance duties, personal liability, and insurance considerations

Afternoon break

3:15-4:15pm: Outsourcing Securely: Cyber Risk & Compliance in Legal IT Procurement

Heather Anson, Consultant, Digital Law

With outsourcing now integral to the delivery of legal services, ensuring cybersecurity and compliance when procuring software and IT solutions has never been more critical. This session will explore how law firms can effectively assess and manage cyber risks associated with third-party providers, from due diligence and contractual safeguards to data protection and regulatory obligations.

Designed for both in-house counsel and private practice lawyers, the session offers practical guidance on achieving secure and compliant IT procurement.

Recording of live sessions: Soon after the Learn Live session has taken place you will be able to go back and access the recording - should you wish to revisit the material discussed.