UK top 100 law firm Bristows has selected Pentera and Appurity for a continuous automated security validation solution. Pentera, which is headquartered in Israel, specialises in real time pen testing and remediation of security gaps. Appurity, which is UK-based, is the reseller and implementation partner.
Appurity introduced Bristows to Pentera in response to growing ransomware threats. Pentera simulates ransomware attacks within law firms’ production environments, providing a detailed assessment of vulnerabilities and potential damage. This allows for a better understanding of the ‘blast radius’ of an attack.
Bristows says that it can now pinpoint areas of critical risk and determine which vulnerabilities are exploitable, plus ensure there is no misconfiguration across their estate.
Chris Jory, IT Manager of Bristows said: “We have worked with Appurity for a number of years on a multitude of security projects. The team works closely with many legal firms so they thoroughly understand the challenges we face, and the regulatory and ethical requirements to protect sensitive data without negatively affecting our fee earners’ and partners’ user experiences. Appurity’s knowledge of Pentera’s technology, and how to assess ransomware risks, means that we can work closely with them post-implementation, getting the best out of the solution.”
Steve Whiter, director of Appurity, added: “We’ve worked with the team at Bristows LLP before to secure and manage their iOS devices, so we know how seriously they take security and data protection. When we spoke to the team about introducing a security validation solution that could safely emulate real-world ransomware attacks in their environment, we knew that Pentera would be the perfect fit. What’s really impressive about this solution is how the Bristows team can run validation tests whenever – they no longer have to rely on manual penetration testing that gives them a health check of their security posture at a single point in time. If they want to make a change to their environment, they can test its performance straight away. It’s a game changer for legal firms looking to evaluate the strength of their security infrastructure against dangerous ransomware threats.”