Cadwalader today announced that it has achieved four ISO certifications and a System and Organization Controls (SOC) 2 Type II examination, passing the most rigorous global tests for data security, privacy, and AI safety, with zero exceptions or nonconformities.
The ISO areas examined include organizational structure and controls, people controls, physical controls, technological controls, encryption, monitoring and logging, business continuity, data privacy, data deletion, and the use of AI. SOC controls included the transactional testing of third-party management, risk assessments, physical security, access management, change management, human resources operations, incident management, and business continuity.
"Achieving five rigorous certifications withzero nonconformitiesis a testament to the operational excellence of our Information Technology and Information Security teams,” said Cadwalader Chief Information Officer Andrea Markstrom. “Our clients can have confidence that we are protecting their information —andgoverning our AI and privacy practices—to the highest professional global standards."
Notably, Cadwalader is among the first Am Law 100 firms law firm to get certified on Artificial Intelligence Management Systems. The additional certifications include Information Security Management Systems, Cloud Security and the Privacy Information Management System. In total, these standards encompass nearly 600 controls which were rigorously tested in each of the firm’s offices and data centers.