This document discusses strategies for securing law firms against cyber threats. It begins by providing background on the presenter and his company. It then outlines disruptive security trends, the nature of law firms, and likely threats against them. Specifically, it notes that sophisticated attackers now target smaller businesses, attacks have become more disruptive, and law firms contain sensitive client information. For threats, it lists nation states, criminal groups, and hacktivists. The document suggests five strategies for law firms: understand your attack surface, protect information at rest and in transit, reduce your external attack surface, be able to identify an attack, and don't go it alone by partnering with security experts. It provides numerous tactical recommendations under each strategic area