Strategic Risk Management Tailored to the Legal Industry

Legal organizations face unique challenges - from protecting client confidentiality and privileged communications to satisfying increasingly complex compliance mandates. We offer comprehensive cybersecurity consulting services that help law firms:

Identify and mitigate cyber risks specific to legal workflows

• Identify and mitigate cyber risks specific to legal workflows

• Conduct threat modeling and gap analysis• Establish defensible security controls aligned with NIST, ISO, ABA standards, and client expectations

• Respond to and recover from incidents swiftly and confidentially

• Ensure secure collaboration with clients, courts, and third parties

Whether your firm is navigating digital transformation, preparing for a client audit, or recovering from an incident - we provide discreet, high-impact expertise grounded in years of in-house and external law firm support.

Trusted Leadership Without the Full-Time Overhead

Cybersecurity and IT leadership are no longer optional - they're a client expectation and a competitive differentiator. As a former Director of Information Security with CISO-level responsibilities at top AmLaw firms, I offer:

• Executive-level governance and board reporting

• Policy development and security architecture planning

• Vendor due diligence and contract review

• Incident response oversight and breach communication strategy

• Alignment with your firm's business priorities and client requirements

Whether you need strategic oversight, interim leadership, or a sounding board for internal IT, our vCISO/vCIO services are tailored to your size, budget, and regulatory exposure - with flexible engagement models that scale with your needs.

Comprehensive, Ongoing Cybersecurity Operations - Without Building a Full Team

Ideal for mid-sized or growing law firms, our fractional model gives you access to an experienced cybersecurity team, without the overhead of hiring, training, or managing a full department. Drawing from hands-on work at firms like WilmerHale and Arnold & Porter, our support includes:

• Day-to-day security operations (SIEM review, log analysis, endpoint hygiene)

• IT and security audits, including internal risk and external client assessments

• ISO 27001 certification, NIST 800-53, NIST 800-171, and other regulatory readiness programs

• Third-party/vendor risk management

• Secure configuration reviews for legal applications and platforms

• Outside Counsel Guidelines support relating to data privacy

• Training and awareness programs designed for attorneys and staff

This model ensures you meet client expectations and regulatory obligations, while maintaining agility and cost-efficiency.

Securing the Tools That Drive Your Practice

Legal technology continues to evolve, but each new tool introduces risk. From document management to eDiscovery, our job is to ensure your innovation is secure, compliant, and client-ready. Services include:

• Security assessments for legal platforms

• Integration of MFA, SSO, and identity governance solutions

• Cloud security architecture for legal SaaS and hybrid environments

• Contract and data flow reviews for legal technology vendors

• Remediation of security gaps in collaboration tools

• Tailored onboarding guides and secure use policies for attorneys

We help ensure your firm's legal tech stack enhances, rather than jeopardizes, your ability to protect sensitive data and maintain client trust.

Ongoing Expertise. On-Demand Confidence.

Cyber threats don't operate on a project schedule, and neither should your cybersecurity leadership.

Our Cybersecurity Retainer Services offer your organization executive-level guidance, strategic risk management, and rapid response capability on a flexible monthly basis. Whether you're a law firm managing client demands, a healthcare provider aligning to HIPAA, or a business navigating ISO or NIST frameworks, this service ensures you're protected, prepared, and always moving forward.

Leadership Backed by Deep Experience

MIS2 is led by Pierre Dickson, a veteran cybersecurity executive and former police detective with over two decades of experience safeguarding mission-critical systems across the federal government, national law firms, healthcare networks, and K-12 education. Pierre founded MIS2 to deliver enterprise-grade cybersecurity leadership on a fractional basis, helping organizations proactively defend their digital assets, manage risk, and stay compliant in an evolving threat landscape.

Founder Career Highlights

GSFC - NASA

Enterprise Services Manager | Program Manager for Cybersecurity

Oversaw enterprise security services and led mission support cybersecurity initiatives for one of the nation's premier federal research and space flight centers.

WilmerHale & Arnold and Porter LLP (AmLaw 50 Firms)

Cybersecurity Program Manager Roles

Directed security architecture, insider threat mitigation, and compliance across global law firm operations, including ISO 27001 certification. Advised legal and risk teams on regulatory exposure and best practices.

Ascension Healthcare

Information Systems Security Officer (ISSO) & Project Manager

Led enterprise-wide healthcare cybersecurity initiatives and coordinated the rollout of ICD-10 and HIPAA-aligned controls in complex medical environments.

U.S. Office of Personnel Management (OPM) - Cybersecurity Division
Served on cybersecurity teams supporting federal HR systems and sensitive personnel data post-breach.

Alion Science and Technology

Chief Information Security Officer (CISO)

Directed enterprise security strategy, compliance, and risk management for a leading defense and engineering firm supporting national security missions.

U.S. Department of Commerce - Office of the Secretary / OCIO
Contributed to department-wide information assurance, cybersecurity program development, and risk management for executive leadership.

Prince George's County Public Schools (PGCPS)

Chief Information Security Officer (CISO) & Director of Technology Support Services

Directed enterprise cybersecurity, compliance, and data privacy programs while simultaneously overseeing district-wide IT support operations for one of the largest K-12 public school systems in the United States, serving over 130,000 students and more than 200 schools and facilities.

What This Means for You?

Through MIS2, your organization gains direct access to the strategic insight and real-world leadership typically reserved for large enterprises and government agencies. Whether you're a law firm, healthcare provider, insurance company, or growing business handling sensitive data - MIS2 delivers enterprise-grade cybersecurity, scaled to your needs.