IT for Law Firms: What Lawyers
Need to Know

icon-clock--white-2  Estimated Read: 15 Minutes

There’s a stereotype about law firms when it comes to paperwork—namely, that a lot of trees have to die for a law firm’s operations every year. There is a basis for the stereotype. Back in 2008, a study found that the average attorney generated up to 100,000 sheets of paperwork each year.

However, even back then, technology was already starting to make a significant dent in the amount of paper produced to meet the needs of the American legal system. Now, law firms across the country rely on electronic documentation and other technologies to reduce paper waste, make filing court proceedings faster, and perform important case law research.

Legal IT isn’t just some buzzword or hot-button topic—it’s a necessity for the efficient operation of a modern-day law firm in New York. Clients in the Tri-State area expect their legal team to have the right tools and technology to efficiently and effectively manage their cases.

What Is Legal IT?

Legal IT—also known as legal tech or legal technology—can be loosely defined as the use of any software or technology for the purposes of operating a law firm or for legal practice.

Lexology provides a more specific definition for legal tech: “software and technology which is used by law firms or legal teams to facilitate their processes and improve their effectiveness.”

Legal IT could include anything from legal document management software, to payroll management systems, time-tracking software, anti-spyware/malware solutions, and even the laptops lawyers and paralegals use.


How Is Legal Technology Evolving?

As technology continues to develop, so too do the solutions that law firms use in their businesses and legal practice. Some of the major trends in legal IT include:

Increased Adoption of Artificial Intelligence (AI)

AI can be an incredibly flexible technology with many different applications. AI is, as noted by Investopedia, “based on the principle that human intelligence can be defined in a way that a machine can easily mimic it and execute tasks.” An interesting note in the Investopedia article is that advances in AI technology have made “previous benchmarks that defined artificial intelligence become outdated.” Some of the benchmarks that were once considered cutting-edge applications of AI are now “taken for granted as an inherent computer function.”

To say it in another way, artificial intelligence is an attempt to recreate how actual humans can perform tasks. This often leverages machine learning algorithms to help the AI program “learn” tasks using previous experience—such as by logging task successes and failures to identify what is or isn’t valid for a given task.

One of the uses that many attorneys may find interesting is applying AI tools to parse massive data sets in a fraction of the time it takes a person to do so.

How can this be of benefit to a practicing attorney? One potential use of this ability is to check financial records and other data sets for anomalies. By scanning a large table of financial transactions, an AI could use a machine learning algorithm to identify what activity is “normal” for those transactions and what activity is anomalous—calling out unusual transactions for review by a paralegal, attorney, or private investigator as needed.

This could be an enormous time-saver for an attorney in a protracted legal dispute that hinges on financial information—such as during divorce proceedings where expenses in joint accounts might be a relevant legal issue or in a case where such records could provide evidence of malfeasance or innocence.

The American Bar Association (ABA) refers to this application as “technology-assisted review (TAR).” The ABA also notes that AI can be helpful for conducting legal research to save time and analyze legal documents for errors, omissions, and inconsistencies that might impact the validity of those documents.

Other Law Firm Technologies Seeing Wide-Scale Adoption

While AI might be one of the most attention-grabbing law firm IT solutions seeing increased adoption, it’s far from the only one. Other IT solutions being used by modern law firms include, but are not limited to:


Document Management Tools

Legal document management systems help staff store, organize, or otherwise manage the legal documents that they use in their practice. The specific features of these tools may vary from one solution to the next, but they tend to be incredibly useful for helping law firms minimize risks while maximizing accessibility. For example, some solutions might have a word processor included, while others leave word processing as a separate solution.


Cybersecurity Solutions

From basic antivirus/antimalware tools to firewalls, data encryption, endpoint protection, and multifactor authentication (MFA), there exists a plethora of cybersecurity solutions that modern law firms need to be cognizant of. An attorney’s client files can be a tempting target for cybercriminals since they can either use or resell the confidential data within to make a profit. Being able to protect client data from theft is a basic necessity for law firms.


Remote Data Backup and Business Continuity Solutions

Data loss is a major threat to any business. New York law firms are no exception to this rule. Between the threat of cybercriminals compromising data availability with ransomware or DDoS attacks, there is the risk of hardware failures, human error, and even random acts of nature bringing down the data center or computer housing a law firm’s important files. Having a remote offsite backup of important data or case files could be vital for keeping the firm operating at peak efficiency following a disastrous event.


Time Tracking Software

When billing for services, having an accurate log of the time attorneys have spent working is vital. Inaccuracies in the billable hours charged to a client can be a major problem since it leads to disputes (and violates professional conduct rules). Time tracking software helps lawyers more accurately record their billable hours so they can avoid over-charging (or under-charging) clients for their work.

These are just a few of the different technologies that law firms in Long Island, Manhattan, and the rest of New York use today.

What Are Some Common Legal IT Challenges?

Although the goal of using technology is to make life easier for everyone in the law firm, legal IT isn’t without its challenges. Even as lawyers, business office managers, secretaries, paralegals, and front office staff benefit from the conveniences of law firm technology, the business itself faces new challenges because of the need for consistent access to IT resources for basic business operations.

Some of the biggest IT challenges that a legal practice faces include (but may not be limited to):


1. Managing Data Retention

Data retention is a major issue for any law firm. Having the ability to access critical legal documents is important, but so is being able to remove unnecessary documents after the data retention period is up.

When law firms primarily relied on paper records, the biggest challenge was accurately tracking where the paper file was when it was needed (followed by retrieving it from the records room). However, disposing of obsolete records that the firm is no longer required to keep is also simpler with paper records—a quick trip to a legal document shredder or a furnace would be enough to prevent the recovery of any sensitive information that the document might have held.


In the electronic age, data retention and management can be simultaneously easier and more difficult. How can electronic records complicate a firm’s data retention policy? While finding documents is often much faster and easier with electronic documents, disposal is often more complicated.

When someone “deletes” a file from a computer, that doesn’t actually destroy the data in the file. Instead, it frees up that space on the device’s hard drive to be overwritten by other information later. So, when getting rid of obsolete files, it’s often necessary to use an IT asset disposition (ITAD) solution to ensure that the data is really gone.

ITAD solutions use a few different solutions to render data on a hard drive irretrievable:


Degaussing the Drive.

By applying extraordinarily powerful magnetic fields to a hard drive or other storage media, the data on a disk platter can be completely destroyed beyond all hope of recovery. Unfortunately, this only works on storage devices that rely on magnetic information storage/writing technology, so it does not work on CDs, DVDs, or solid-state drives (SSDs).



Physical Drive Destruction.

By physically destroying a data storage device, it’s possible to prevent the recovery of any data on the device. This is more effective at preventing data retrieval for devices that may be resistant to degaussing.



Total Data Rewrites.

To avoid having to completely destroy a data storage drive, some ITAD vendors may instead delete the data on the drive and then fill the drive completely with junk data to overwrite every sector on the drive. This overwrite helps to ensure that the older data cannot be retrieved later while preserving the drive itself for future use.


This level of thoroughness is necessary to help protect clients’ sensitive information from malicious actors who might try to misuse it.

Additionally, law firms need to have a solution to track when it’s okay to delete a file and prevent the accidental deletion of mission-critical files needed for active cases or those that have what the New York State Bar Association (NYSBA) refers to as “intrinsic value,” such as wills or deeds—which the firm is required to maintain indefinitely for ethics requirements. This is one of the things that a legal document management solution is often useful for.

2. Maintaining a Strong Cybersecurity Posture

There will always be someone looking to take advantage of new technology and resources for nefarious purposes. Unfortunately, law firms can be a tempting target for cybercriminals because of the sensitive nature of the documents they process, such as:

  • Court case notes
  • Client lists and contact information
  • Financial information (From both clients and records used as evidence in court cases)
  • Wills, deeds, and other legal documents

A malicious actor could easily use stolen data to commit fraud, resell it to interested parties, or even blackmail a client.

Alternatively, instead of stealing data, a hacker could carry out a denial-of-service attack to prevent the law firm from being able to conduct routine activities. For example, some cybercriminals leverage massive networks of infected devices, called botnets, to carry out distributed denial-of-service (DDoS) attacks against businesses.

Another major threat to the security of a law firm’s data is basic user error. Many users of IT resources simply aren’t able to accurately identify actual cyber threats. In fact, ZDNet reported on a survey which revealed that although “nearly everyone (96%) knew about phishing and 88% said they could accurately define it… nearly half (47%) didn’t know that phishing can happen through software.” Worse, only “5% were able to correctly identify all types of [phishing] scams.”


In other words, if you had 20 people working in your firm, only one person would be able to successfully identify and avoid every kind of phishing scam—and that’s just one of the many cyber threats that your firm has to contend with!

This is why law firms need to maintain a strong cybersecurity posture that incorporates not only solid security tools but comprehensive training and testing to ensure that good cybersecurity practices are followed throughout the firm.

3. Ensuring Uptime/Availability of IT Resources

Without consistent access to critical IT resources, operations in a law firm can grind to a halt. The ABA reported that “the majority of outages affect businesses for more than seven days and technology disruption is a major concern.” Ensuring that mission-critical IT resources remain available when they’re needed can be a huge challenge because there are many issues that can cause an outage, such as:


Cybercriminal Activity

Data breaches and cyberattacks, such as the DDoS attacks mentioned previously, are a major threat to the availability of legal IT resources. This is one of the reasons why law firms need to maintain a strong cybersecurity posture.


Power Outages

New York sees a lot of power outages in a year. According to Tara Energy, the state of New York “typically experiences more than 1,700 power outages each year.” A blackout obviously means that computers without some kind of battery backup will stop working—and power outages may result in a loss of internet service, too. Having battery backups for desktop computers or a power generator can help (though a generator may not be an option for some office locations in the Tri-State area).


Technical Failures

Technology can be massively complicated. Unfortunately, high complexity can often translate into an increased risk of a component failing unexpectedly—especially when dealing with ad hoc systems assembled from different sources. For example, there could be a power failure at a remote data center that takes it offline, a custom API that interfaces two different programs might stop working when one gets an update, or a system might be rendered temporarily unavailable to conduct necessary maintenance. This is why it’s important to choose your IT vendors carefully and look for some managed IT support to help you maintain your technology portfolio to prevent needless complexity and failure risk.

Many businesses—not just law firms—invest heavily in business continuity solutions to help curb the risks posed by IT service outages.

The state of New York experiences more than 1,700 power outages each year.

- Tara Energy

4. Managing IT Expenses

Managing IT projects and maintaining IT infrastructure isn’t always cheap. There are numerous costs to consider when managing IT internally as an organization, such as:

  • Software licensing fees
  • Hardware costs (for computers, smartphones, laptops, network routers, cabling, etc.)
  • IT staff salary and benefits—which can easily be upwards of $128k/year for IT engineers in New York (Source: Glassdoor)
  • Software development costs

Handling IT internally as a law firm to the standard needed to ensure compliance with industry requirements can be incredibly expensive—especially if the firm needs to change IT solutions or launch any other major IT project at any point in the year.

This is where finding an IT service management (ITSM) vendor can be helpful. By outsourcing basic IT tasks and getting expert support for legal IT management, law firms can help reduce their IT costs by removing the need to recruit costly internal personnel and eliminating unnecessary hardware and software acquisitions.

5. Integrating Existing IT Solutions with New Ones (Such as the Cloud)

One of the biggest challenges with managing IT for a law firm is keeping up with all of the new developments in technology.

For example, most IT solutions for businesses used to be based on locally-installed software running on hardware in the business—which is referred to as “on-prem” solutions by some in the IT industry.

However, after the turn of the millennium, as the general speed and reliability of internet connectivity improved, many IT solution providers changed over to a “cloud-based” service model. Instead of relying on locally-installed software running from a data center located in the building, so-called “cloud” solutions use hardware and software in a remote data center for common business operations.


The problem was that many businesses were still using legacy software that wasn’t originally designed with the cloud in mind. This led to the need to either adapt the existing solution to work in a cloud-based environment or completely replace the legacy software and have everyone in the business learn a completely new IT solution from scratch. Both of these solutions had their own challenges and could be costly to enact.

Even now, whenever there’s a new IT solution for a common business challenge, law firms are forced to consider if they need to adopt that solution as well as how it will impact their tech stack and existing process workflows.

Dealing with Compliance Issues in Legal IT

One of the biggest challenges that any attorney or legal practice in the U.S. faces is the sheer variety of regulatory requirements they face on the local, state, federal, and even international level. There is no one codified list of standards that will cover every situation in every state.

However, there are a few regulations that lawyers in New York will need to keep in mind when dealing with IT and digital information storage and retrieval, such as:


1. American Bar Association Ethical Guidelines

Rule 1.6 section (c) of the ABA’s Model Rules of Professional Conduct states that “A lawyer shall make reasonable efforts to prevent the inadvertent or unauthorized disclosure of, or unauthorized access to, information relating to the representation of a client.”

While not a data security rule per se, the instruction to prevent unauthorized disclosure of information relating to the representation of a client does present a responsibility for the firm or lawyer to take basic precautions to prevent data breaches.


2. The European Union (EU) General Data Protection Regulation (GDPR)

When the EU’s General Data Protection Regulation (GDPR) was first released, it was major news that shook up many industries in the USA—including legal practice. The regulation set forth a series of data privacy and data protection rules that would be applied to any organization that collects, stores, or processes the data of EU citizens.

Given that New York is a major tourist destination for foreign visitors—when the pandemic hit in 2020, the state still saw 22.3 million tourists that year—and that foreign visitors may often require legal advice or assistance during their trip to the Big Apple, it’s easy to see why law firms in New York would need to be cognizant of GDPR and follow its requirements.

Additionally, being GDPR-compliant can also help law firms attract security-conscious clientele who need services from a firm that has the resources and tools to protect their data.


3. Data Breach Notification Requirements Under the NYS Information Security Breach and Notification Act

Although not specific to law firms, firms operating out of New York State need to be cognizant of the requirements of the NYS Information Security Breach and Notification Act (Section 208 of the State Technology Law and 899-aa of the General Business Law).

General Business Law section 899-aa would be the standard applicable to law offices and outlines how businesses need to disclose any breaches of sensitive data to their clients who reside in New York and what specific terms used for the notification mean. Valid notification methods include written notices, electronic notices, telephone notifications, and alternatives like email notifications, notices on the business’ website, and notifying “major statewide media” (such as a news station) when physical or labor-intensive notification methods would be too costly.

Keeping up with IT compliance can be a challenge for any law firm regardless of size, which is why many firms turn to outsourced IT services in New York to help them with their IT needs.

The EU's General Data Protection Regulation set forth a series of data privacy and data protection rules that would be applied to any organization that collects, stores, or processes the data of EU citizens.

Major IT Services for Law Firms

There are countless IT services on the market to help businesses tackle all kinds of IT challenges—from managing their tech stack to defending against cyber threats, providing tech support for the business, and more.

What are some of the biggest managed IT solutions for law firms? Here’s a short list of some services that can help law offices make the most out of their IT investments and minimize their risks and liabilities:


Co-Managed IT Support

For organizations that already have an IT department/team, but need help because the demands of IT management have outpaced their available resources, a co-managed IT support service can be a lifesaver.

Instead of replacing your existing legal IT team, a co-managed support team accentuates your existing team to free up their time and resources for what you need them to focus on. These services can be highly customizable to meet your specific needs—allowing you to address gaps in your IT team while minimizing the impact of your office’s total cost of ownership (TCO) for IT resources.



Managed Helpdesk Support

A managed helpdesk helps an organization by providing around-the-clock support that encompasses IT discovery and roadmap, IT service management, remote monitoring, and service desk support in a single offering.

Fully managed helpdesk solutions help organizations that currently lack a dedicated IT team quickly access the resources and expertise they need to maximize the ROI from their IT investments.

For example, a managed helpdesk with a vendor management system can help a law office manage their IT vendors—identifying redundancies and other opportunities to streamline solutions to simplify IT costs or improve the business’ IT infrastructure.



Cybersecurity Services

Every organization can benefit from having a strong cybersecurity posture. With the sheer variety of cyber threats out there that can cause IT service outages or data breaches, law firms need a comprehensive suite of tools to protect their business from malicious actors.

Four essential cybersecurity services offered by managed service providers (MSPs) include:


Managed Firewall

Having a modern firewall with up-to-date rules is the first step in protecting your office’s network from illicit access. Managed firewall services help ensure that your team can do their work without creating an excessive risk of a data breach event.


Managed Endpoint Protection

The individual devices on your network can be a major data security risk to contend with. Managed endpoint protection provides security for the desktops, tablets, phones, and laptops your team uses to help prevent the theft of sensitive case and client information.


Managed Email Security

From phishing attacks to malware downloads, email can be a major security risk for a law firm. Managed email security services help provide extra protection against scammers and other cybercrooks.


Managed Web Security

The internet is littered with cyber threats that can lead to data breaches: malware on spoofed websites, pop-up ads that trick users into giving up sensitive data, and more. Managed web security helps keep your web browsing secure against these threats so your team can use the web more safely.


IT Assessment

To more accurately address your needs, some MSPs offer an IT assessment service that inspects your current IT infrastructure, your goals, and your operational needs to identify the best resources to use. These IT assessments may vary depending on the tools and resources available to the MSP.

For example, Converged Technology Group’s complimentary, no-obligation IT assessments generally include:

  • An IT Infrastructure Check. Using an industry-standard software agent, we check your infrastructure to find potential vulnerabilities.
  • Onsite Interview/ (Walk Through) Inspection. We send an IT specialist to you to provide professional, courteous, and thorough service during the assessment.
  • No Cost/Obligation Check. The inspection is a no-cost, no-obligation check. 

Why wait? Get a free IT assessment now!


Get a Free Assessment


Remote Data Backup and Business Continuity Services

One of the most important outsourced IT services in NYC is remote data backup/business continuity. These services are vital for helping ensure:

  • Legal documents aren’t lost to a catastrophic event.
  • Important business information (such as customer billing data) is maintained.
  • The impact of service outages or data loss events is minimized.

The cost of IT downtime is generally between $137-$427 per minute (Source: Atlassian). When data is unavailable, the software, platforms, and applications that rely on that data will be rendered inoperable or ineffective.

However, the average cost of a data loss event can vary depending on the nature of the data. A law firm could face additional costs for losing important data. 

For example, losing documents with intrinsic value or losing a case because of missing important legal documents may mean having to defend a malpractice case—which can significantly increase costs.

The Benefits of Outsourcing Legal IT

So, why would a law firm want to outsource its IT functions to a third-party legal ITSM company? There are a number of reasons, such as:


Cost Savings

The most frequently cited benefit of outsourcing IT to a managed IT support or cybersecurity service is the reduction in IT costs. Hiring IT staff internally can be prohibitively expensive in NYC—even for a law firm with a healthy number of high-earning partners. Hiring an MSP to provide managed IT helpdesk or other outsourced services can provide the same (or better) expertise for a fraction of the cost of hiring internally.


Improved IT Asset Management

With an IT service management company, you can rely on them having a broad team with a large pool of IT knowledge that helps them pick the best solutions for your specific IT needs. Instead of being limited to the knowledge and experience of a single IT engineer, you can get advice and insights from a large team that has worked with a variety of tools to learn their unique benefits and quirks that might impact your practice.


Improved Data Security

When hiring an internal IT security specialist, there’s often only so much that one person can do. A single Chief Information Security Officer (CISO) can only be up and available to manage security issues for so many hours a day. However, with a managed cybersecurity service, you get a whole team of specialists who can provide 24x7x365 protection for your business.


Increased Uptime for IT Assets

By having a larger pool of specialists to tackle any IT issues that arise, an MSP can help ensure more consistent uptimes for all of your IT assets. This means more consistent access to your legal documents, time tracking software, and other important solutions that help you keep your firm running at peak efficiency and effectiveness.


Reduced Work for Your Office’s Leadership

Instead of having to try to manage IT issues, your time can be better spent on winning cases, organizing your legal team, and other value-added activities. By leveraging managed services for law firms, you can reduce your workload and let someone else tackle problems like answering the paralegal’s questions about how to open a legal document in your word processor software.


Instant Access to an Experienced Team

Recruiting an IT engineer (especially one with the right skills for your specific needs) can be a time-consuming process. It can take weeks to find a qualified candidate, set up an interview, and then vet their skills—and the process often needs to be repeated multiple times before a good hire is found. By hiring an MSP with a preexisting IT team, you get immediate access to that team and all of their skills—no need to spend time and money on protracted recruitment campaigns and vetting.

Avoiding the Impacts of IT Turnover. In addition to getting immediate access to a team of IT experts, using an ITSM for your legal IT needs helps you avoid the risks of labor volatility. For example, if you’re relying on a single internal IT engineer to manage your IT infrastructure, what happens when they’re on vacation, get sick, or decide to leave for another employment opportunity? With an MSP, you have several IT engineers working on your account, so there aren’t any gaps in service just because one person is missing.

Are You Ready to Transform Your Legal IT?

Need help managing your law firm IT in NYC or the Tri-State area? Get help from an outsourced IT NYC company! Converged Technology Group specializes in providing comprehensive managed IT services to companies in New York to help them save time, avoid headaches, and meet their business goals.

Reach out to us today to get started!

Download the Whitepaper

Want to take this to go? Access our downloadable whitepaper now!