“Cybersecurity remains a top concern in the legal profession. A data breach is a question of when, not if. Lawyers must take steps to protect their own security and privacy, as well as that of their clients. The ABA Cybersecurity Handbook is a vital desk-side resource to help lawyers understand the nature of the threat, protect their practices and their clients’ confidential information and intellectual property, and comply with ever-changing legal rules.” ― Reggie Turner, President, American Bar Association This third edition of The ABA Cybersecurity Handbook updates and expands upon the issues raised in the first two editions. The cybersecurity landscape has undergone seismic changes since the publication of the second edition in 2017. The COVID-19 pandemic has brought new levels of technology integration to the practice of law, accompanied by new and expanded cybersecurity risks. Beyond the legal profession, the SolarWinds, Kaseya, and Colonial Pipeline breaches have set new and alarming precedents. Heightened cybersecurity risk worldwide has prompted increased responses from the US federal government and from the international community. Amid these ongoing developments, the Handbook is at your fingertips as a guide to preparing for and responding to cybersecurity threats and incidents. The foundational information it shares will remain relevant even in a changing environment. The recommendations within each chapter, located at the end, provide an easy guide for developing and implementing an effective cybersecurity program, including building the understanding of lawyers’ legal and ethical obligations to provide effective provide data security. The Handbook covers a wide array of topics and provides a comprehensive look not only at the threat developments of the past few years, but also at the trends that have been established in cybersecurity. The Handbook addresses concerns and provides recommendations for several different types of legal practices―small firms and large ones, government lawyers and in-house counsel. Overall best practices are developed and shared throughout the Handbook . As the cybersecurity landscape continues to evolve, the Handbook will be an indispensable reference for you and your practice. JILL D. RHODES is vice president and chief information security officer for Option Care Enterprises, Inc. Her responsibilities include the integration of information security governance, education, process development, and technology into all facets of this multibillion-dollar health care company. Prior to moving to the private sector, Ms. Rhodes spent 20 years working in and with the national security community of the federal government. She joined the Office of the Director of National Intelligence (ODNI) where she supported the intelligence community (IC) integration of data and security into the Cloud Environment for the IC Chief Information Office. In addition to other national security roles, Ms. Rhodes worked with data management, foreign language, and training matters on behalf of the National Clandestine Service of the CIA, addressing issues such as data security and exploitation. Before joining the national security community, Ms. Rhodes was a foreign service officer, stationed in Bolivia and Russia. She also worked extensively throughout Eastern and Southern Africa. Ms. Rhodes was honored with the 2019 Chicago-area CISO of the Year award. She has written, published, and speaks nationally about cybersecurity issues. Ms. Rhodes was the co-editor of the first and second editions of the ABA Cybersecurity Handbook: A Resource for Attorneys, Law Firms, and Business Professionals and edited the book National Security Law, Fifty Years of Transformation: An Anthology (2012). In addition, she has written articles and chapters on various cybersecurity topics and is regularly interviewed about cybersecurity for different publications. She is a graduate of the University of Illinois at Urbana-Champaign, the University of Cincinnati College of Law (JD), and the George Washington University College of Law (LLM). She is also a certified information security manager and certified information privacy professional/IT. Robert S. Litt if of counsel in the firm of Morrison & Foerster. He served as the second General Counsel of the Office of the Director of National Intelligence (ODNI) from June 2009 until January 2017. Before joining the ODNI, Mr. Litt was a partner with the law firm of Arnold and Porter, LLP. He served as a member of the governing body of the American Bar Association’s Criminal Justice Section and a member of the Advisory Committee to the Standing Committee on Law and National Security. He previously worked at the Department of Justice, where he served as Deputy Assistant Attorney General in the Criminal Division and as the Principal Associate Deputy Attorney General; as special advisor to the Assistant Secretary of State for European and Canadian Affairs; and as an assista