CASE STUDY: PILLSBURY INTERNATIONAL LAW FIRM

Assure Security, Governance, and Compliance with Apptega and Verinext

ABOUT PILLSBURY WINTHROP SHAW PITTMAN LLC (PILLSBURY)

Pillsbury Winthrop Shaw Pittman LLP (Pillsbury) is an international law firm with a particular focus on the technology and media, energy, financial services, real estate and construction, and travel, leisure, and hospitality sectors.

Recognized by legal research firm BTI Consulting as one of the top 20 firms for client service, Pillsbury and its lawyers are highly regarded for their forward-thinking approach, their enthusiasm for collaborating across disciplines, and their unsurpassed commercial awareness. As a result, the firm has achieved the 13th-highest percentage of Chambers-ranked lawyers among all AmLaw 100 firms.

INDUSTRY: International Law Firm

LOCATION: Nashville, TN and 19 other International Locations

WEBSITE: pillsburylaw.com

Case Study- Pillsbury

“As a law firm for customers in multiple industries, we must meet many compliance standards and we need to be able to easily communicate our controls and processes to the business side to show evidence of our compliance. But providing documentation across multiple departments was an exceptional resource drain.”

-Ray Elquist, Information Assurance Manager, Pillsbury Winthrop Shaw Pittman LLP.

THE CHALLENGE

Comply with governance and regulatory requirements by validation of its data compliance, security posture, and documentation.

As a firm that represents corporate customers across multiple industries, Pillsbury must comply with a broad range of governance and regulatory requirements. For each of its clients, validation of its data compliance and security posture needs to be documented and logged to demonstrate the firm’s adherence to industry-specific regulations and best practices. But proving that appropriate controls were in place for each customer was a tedious and time-consuming undertaking.

Pulling together compliance information such as internal controls, acceptable use policies or even something as simple as what version of endpoint antivirus software is being used can take hours if done manually and provides cybersecurity workflow management for improved compliance, visibility, and reporting.

case study

“As a law firm for customers in multiple industries we must meet many compliance standards and we need to be able to easily communicate our controls and processes to the business side to show evidence of our compliance. But providing documentation across multiple departments was an exceptional resource drain.”

– Ray Elquist, Information Assurance Manager, Pillsbury Winthrop Shaw Pittman LLP
Case Study- Pillsbury

“Verinext provided us with an executive briefing and we were very impressed with what we saw. One of the solutions they introduced to use was Apptega. With Apptega, we identified the opportunity to optimize our security standards and pinpoint where we needed to place our priorities based on the SANS top 20 controls. It essentially provided us with a road map for security success.”

 — Ray Elquist, Information Assurance ManagerPillsbury Winthrop Shaw Pittman LLP

THE SOLUTION

Verinext assisted Pillsbury with the Apptega implementation and offered guidance with its initial security recommendations. As an end-to-end cybersecurity platform, Apptega makes it easy to build, manage and report on all cybersecurity functions in a single solution.

With built-in recommendations for multiple industry frameworks – from NIST, HIPAA, and PCI to SOC2, ISO, and SEC – the solution outlines the necessary controls required to be compliant. This helped Pillsbury to quickly identify any security gaps and prioritize what needs the most attention while giving the company deep visibility into their cybersecurity plan so that they can better measure their success.

“We can plug in the industry framework we need to comply with and Apptega will guide us with the steps we need to perform to meet its requirements. It also performs valuable audits of our internal strategy so that not only can we assure regulatory compliance but so that we have a stronger grasp of the budget and resources needed in the future.”- Ray Elquist Information Assurance Manager Pillsbury Winthrop Shaw Pittman LLP

While the solution has helped chart Pillsbury’s cybersecurity road map, it’s also delivered other time-saving features. “At first we thought Apptega would just be a tool to help us chart our cybersecurity strategy, but what we got was so much more. Apptega has also become a core component of our compliance evidentiary process for our clients.”

The Pillsbury team now has put Apptega at the core of its cybersecurity workflow and can run needed reports for clients and prospects to prove compliance where needed. The team plugs in the evidence that it is meeting key controls once and can then run reports based on that data for new client requests or RFP questionnaires. “It saves hours upon hours of legwork.”

-Ray Elquist, Information Assurance Manager Pillsbury Winthrop Shaw Pittman LLP

Success Highlights

  • Performs valuable audits to assure regulatory compliance and adherence to industry-specific security frameworks for its customers
  • Pinpoints priorities based on the SANS Top 20 controls to produce a roadmap for security success
  • Delivers a single solution to build, manage and report on all cybersecurity functions, minimizing tedious and time- consuming manual processes

THE RESULTS

With Apptega in place, Pillsbury is now confident of its cybersecurity strategy and knows the top priorities to focus on to stay ahead of its clients’ requirements.

Not only has it increased the security of its systems and controls, but it has also helped build greater confidence between the firm’s security and line-of-business teams and loyalty with the customers they serve. Going forward, Pillsbury plans to use Apptega to achieve its ISO 27001 certification – a goal they have had for some time. Elquist and his team also plan to begin using Apptega’s prescriptive advice feature as the law firm moves into more complex security frameworks.

“We are very grateful to Veristor’s expertise and guidance in finding this very powerful product for our environment. They spent the time listening carefully to our needs and delivered the exact solution we needed to elevate our cybersecurity posture and demonstrate compliance to our customers.”

-Ray Elquist, Information Assurance Manager Pillsbury Winthrop Shaw Pittman LLP

Ready for Your Next Digital Transformation Step?

Contact Us for a Consult