Executive Programme 2026

Cybersecurity for Law Firms:
Protecting What Matters Most

DATE: Thursday 22nd January 2026

From 1.30pm to 4.45pm, Singapore Time (GMT+8)

This module is conducted in-person at ASSAS.
Participants outside Singapore may choose to attend this module via Zoom.

Contact us Download the brochure Register now

Speaker’s Profile

Sandrine Richard

Lawyer – Business ethics expert

Sandrine Richard is an international expert in business ethics, governance, and digital trust, with 15 years of experience advising executives, law firms, and international organizations.

A former lawyer at the Paris Bar, she has led compliance and cybersecurity programs across Europe, the Middle East, and Africa. She regularly trains top management on governance, ISO 37001/37301 compliance, and responsible AI.

As a member of Docaposte’s Ethics Committee and Associate Researcher at the French Gendarmerie’s research center, she brings a unique blend of legal expertise, strategic insight, and international best practices

An executive training for law firms in Singapore on cybersecurity risks, best practices, and crisis response.

In today’s digital economy, data is currency—and law firms are uniquely exposed. With privileged access to confidential contracts, litigation strategies, and high-value client information, they are increasingly prime targets for cyberattacks worldwide.

This intensive executive training equips legal professionals in Singapore with the tools, strategies, and awareness to navigate the cybersecurity challenges of the legal sector. The program blends real-world case studies with practical frameworks, offering participants actionable insights into preventing breaches, maintaining client trust, and safeguarding their firm’s reputation.

The agenda covers five key areas:

  1. The Threat Landscape – Understanding why law firms are high-value targets and learning from recent breaches.
  2. The Strategic Imperative – Recognizing cybersecurity as a business-critical issue with legal, ethical, and financial dimensions.
  3. Prevention Through Best Practices – Applying global standards such as ISO/IEC 27001 and NIST, tailored to legal operations.
  4. Building Resilience with Internal Policies – Developing and enforcing the 10 essential cybersecurity policies every law firm needs.
  5. Crisis Response Planning – Preparing a clear playbook for incident response, communication, and recovery.

Participants will leave with a deep understanding of their unique risk exposure, a concrete checklist of best practices, and a tailored crisis response framework. This seminar bridges legal relevance with technical clarity to deliver practical, strategic, and immediately applicable outcomes for law firms.

Contact us Download the brochure Register now

Date:

Thursday 22nd January 2026 – 1.30pm to 4.45pm

Duration:

Total 3 hours

Location:

Assas campus, Singapore
Online attendance is also available

Programme Overview

Thursday 22nd January 2026

Module
Time
Synopsys
Cybersecurity for Law Firms: Protecting What Matters Most
Registration
1.15 pm › 1.30 pm
Module 1:
Under Attack: Why Law Firms Are a Growing Target
(30 min)
1.30 pm › 2.00 pm

Case studies of cyberattacks on law firms, threat actors, and common vulnerabilities.
◊ Takeaway: Clear understanding of risks specific to law firms.

Module 2:
Why Cybersecurity is a Business Issue, Not Just an IT Problem
(30 min)
2.00 pm › 2.30 pm

Legal, ethical, and financial impacts; regulatory frameworks; client trust.
◊ Takeaway: Mindset shift—security as a strategic imperative.

Module 3:
From Reactive to Proactive: International Standards in Action
(50 min)
2.30 pm › 3.20 pm

ISO/IEC 27001, NIST, and legal sector guidelines; security-by-design; triad approach.
◊ Takeaway: Best-practice models adapted for law firms.

Break
3.20 pm › 3.35 pm
Module 4:
10 Cybersecurity Policies Every Law Firm Must Have
(40 min)
3.35 pm › 4.15 pm

Covering device management, remote work, vendors, communication, and data retention.
◊ Takeaway: A checklist of essential cybersecurity policies.

Module 5:
When It Happens: Responding to a Breach
(30 min)
4.15 pm › 4.45 pm

Anatomy of an incident response, communications, regulators, and PR management.
◊ Takeaway: A crisis playbook to minimize damage and recover quickly.

Contact us Download the brochure Register now

Fees:

  • Early Bird Price (registration by 8 January 2026): SGD 265 ou EUR 175 (inclusive of GST),
  • Regular Price (registration after 8 January 2026): SGD 290 ou EUR 200 (inclusive of GST).

CPD Accreditation:

CPD points: 3 Public CPD Points
Practice area: Telecommunications, Media & Technology / Including 3 Mandatory Ethics Component (MEC) points.
Training category: General

Participants who wish to obtain CPD Points are reminded that they must comply strictly with the Attendance Policy set out in the CPD Guidelines. For participants attending the face-to-face activity, this includes signing in on arrival and signing out at the conclusion of the activity in the manner required by the organiser, and not being absent for more than 15 minutes on each day of the activityFor those participating via the webinar, this includes logging in at the start of the webinar and logging out at the conclusion of the webinar on each day of the activity in the manner required by the organiser, and not being away from any part of the webinar for more than 15 minutes on each day of the activity. Participants may obtain 3 Public CPD Points for each day of the event on which they comply strictly with the Attendance Policy. Participants who do not comply with the Attendance Policy on any particular day of the activity will not be able to obtain CPD Points for that day of the activity. Please refer to www.sileCPDcentre.sg for more information.