For almost every organisation in the world, cybersecurity is a constantly evolving field, exposed to increasing risks and critical issues.
Recent geopolitical events have reshaped the threat landscape, causing increases in hacktivism and cybercrime. Threat actors have also evolved their attack techniques and increased their capabilities. Ransomware and social engineering (including phishing) remain the most common vulnerability for organizations, but there has been a significant rise in attacks against availability, particularly DDoS, in recent years.
The growing relevance of data in the modern economy has led to an exponential increase in the amount of data that is collected and processed. At the same time, the number of data breaches has also grown dramatically.
In addition, a large number of cybersecurity obligations for companies (including the adoption of technical and organisational measures, the assessment of supply chain cybersecurity, the reporting of security incidents to the relevant supervisory authorities, etc.) have recently been introduced by new laws and regulations at both European and national level.
ADVANT Nctm has extensive experience – drawing upon a range of areas of expertise including IT&Data, White Collar Crimes and Compliance, Corporate and Commercial, Employment and Industrial Relations, Intellectual Property, and Dispute Resolution – to address even the most complex of cybersecurity considerations and challenges.
More specifically, our team offers:
extensive experience in regulatory compliance, data protection, crisis management, liability and criminal law;
a network of technical experts, including IT forensics experts, ransomware negotiators, crisis communicators, financial and economic experts, auditors, brokers, insurers, software solution providers;
international partnerships to handle cyber risk.
When it comes to prevention of, and defense against, cybersecurity threats, we provide clients with:
advice on the applicability of (and obligations arising from) cybersecurity laws and regulations, such as NIS, DORA, European Electronic Communications Code, Cyber Resilience Act, AI Act, etc.;
assessment of compliance with the applicable cybersecurity laws and regulations;
assistance in identifying structures, defining processes and setting up policies and procedures for managing cybersecurity risks;
support in assessing the cybersecurity of the supply chain and regulating contractual relations with suppliers;
drafting, reviewing and negotiating cybersecurity contractual clauses;
support in the provision of training courses for personnel and the implementation of cybersecurity awareness campaigns;
assistance in managing and responding to security incidents, including through ADVANT Nctm’s network of technical expert;
support in the notification of security incidents (including personal data breaches) to the competent authorities and communication to those individuals involved in the incidents;
assistance in filing complaints with the competent authorities and in civil, criminal and administrative proceedings before judicial authorities and supervisory or surveillance authorities.