Insights

Security & IT guidance for regulated firms.

Practical, field-tested guidance on cybersecurity, managed IT, and compliance — written for the legal, healthcare, and financial firms we serve across Los Angeles.

Legal

Attorney-Client Privilege in the Cloud: Securing Microsoft 365 for Law Firms

Moving matters to Microsoft 365 does not waive privilege — but a misconfigured tenant can. The controls that keep confidential client data confidential.

May 27, 2026 5 min read

Cyber Insurance

What Cyber Insurers Now Require Before They'll Renew Your Policy

Renewal questionnaires have turned into control audits. The five requirements that decide your premium — and whether you're covered at all.

May 22, 2026 4 min read

Ransomware

Surviving a Ransomware Audit: What Regulators Actually Look For

After an incident, your insurer and regulator both want evidence — not intentions. Here is the control evidence that survives scrutiny.

May 20, 2026 4 min read

HIPAA

HIPAA and Microsoft 365: The Configuration Checklist Most Practices Miss

A signed BAA is the start, not the finish. Here are the M365 settings that move a practice from 'covered' to 'compliant.'

May 14, 2026 5 min read

Reg S-P

Reg S-P for the 15-Person RIA: What Actually Changed

The amended Safeguards Rule applies regardless of headcount. A pragmatic path for small advisory firms.

May 8, 2026 4 min read