Weaponizing Security? The Emerging Role of the CISO in eDiscovery

The role of the Chief Information Security Officer (CISO) is becoming the norm in eDiscovery companies as these companies grow their client base and venture into compliance and data breach prevention services. In fact, one industry expert sees the CISO role also being weaponized to support the sales function during client discussions about security.

en flag
nl flag
fr flag
de flag
pt flag
es flag

E-Discovery Companies Lean on CISO Roles for Service Expansion, Growth

An extract from an article by Victoria Hudgins as published in Legaltech© News

A rarity 10 years ago, chief information security officers (CISO) are now being given a seat at the table at eDiscovery companies as such organizations look to grow their clientele and services.

To Sundhar Rajan, who’s held the CISO position at eDiscovery company Casepoint for nearly seven years, CISOs in peer companies have become the norm over the last eight years. For people in this role, the common task is to align their eDiscovery company’s goals with the need for security.

“Client data is the heart of the game,” Rajan said. “They need to be very careful about it and that they are responsible about it.” He added, “If anything happens to the client data, our [company] reputation will be ruined in the market.”

Computer forensics and eDiscovery services provider HaystackID also recently added a CISO to its ranks when it promoted former president of forensics John Wilson to the newly created position.

To be sure, assisting clients through compliance and data breach discussions has become an emerging service for eDiscovery companies, and one that CISOs can help promote.

Along with potentially greater access to clients, the CISO brings a cybersecurity perspective to the c-suite of a company, an added bonus for deploying security measures.

Read the complete article at E-Discovery Companies Lean on CISO Roles for Service Expansion, Growth


An example of an eDiscovery services provider highlighting the CISO role to support growth and expansion is provided in the form of a recent press announcement from HaystackID and referred to in the aforementioned article by Victoria Hudgins. The full announcement is provided below for consideration.


Press Announcement

eDiscovery Services Provider HaystackID Appoints Chief Information Security Officer As Part of Expanding Information Security Investment

Cybersecurity Authority John Wilson to Direct Expanded Information Security Program with Sergio Garcia Taking Leadership of Forensics First Practice

HaystackID, a specialized eDiscovery services firm that helps corporations and law firms find, listen, and learn from data when facing complex, data-intensive investigations and litigation, today announced the promotion and appointment of John Wilson to the company’s newly created role of Chief Information Security Officer (CISO). In this role, Wilson will be responsible for extending the company’s information security program to support international expansion and infrastructure investments concentrated on data security and privacy, technology optimization and continuity, and legal and regulatory compliance. In conjunction with this appointment, computer forensics expert Sergio Garcia has been promoted within HaystackID to Vice President of Forensics. In this role, Garcia will assume leadership of the company’s Forensics First Practice from Wilson.

CISO John Wilson to Lead InfoSec Efforts

An internationally recognized digital evidence expert, Wilson joined HaystackID in 2018 as President of Forensics and brings more than two decades of cybersecurity, computer forensics, and information technology experience to the CISO role.

“The growth and internationalization of our business warrants a dedicated and expert focus on information security,” shared Hal Brooks, CEO of HaystackID. “With the creation of the CISO position and the appointment of one of the world’s foremost experts on security investigations to that role, we are excited to be able to demonstrate and deliver to our customers expertise and infrastructure that can support data security challenges presented by advanced technologies, increasing data volumes, and expanding compliance requirements. John’s expertise will be of immediate value to our customers, and we are excited to have him leading our information security efforts.”

VP of Forensics Sergio Garcia to Lead Forensics First Practice

An industry acknowledged eDiscovery technology expert with extensive forensics expertise, Garcia joined HaystackID in 2018 as a senior forensics consultant. In his new role as Vice President of Forensics, Garcia will lead HaystackID’s efforts to help customers ensure defensible practices related to computer forensics, records management, eDiscovery, and information governance. He will also be a primary expert for HaystackID’s Forensics First Practice.

“Sergio’s impressive skills in driving the Forensics First support of our customers will continue to be an invaluable asset for HaystackID as we expand and deepen our commitment to providing customers the best computer forensics and investigation technology and talent available,” highlighted John Wilson, CISO for HaystackID. “His proven performance in planning, organizing, conducting, and managing complex audits and investigations will be of great and immediate value to customers in his expanded role as Vice President of Forensics.”

HaystackID’s Forensics First Practice provides customers a highly trained team of compliance, computer forensics, and investigation experts with a dedicated focus on helping organizations plan, organize, conduct, and manage complex audits and investigations. This practice also augments and complements HaystackID’s current portfolio of Forensic First offerings that include:

+ Computer Forensic Collections and Analysis
+ Computer Forensic Expert Witness Testimony
+ ESI Identification, Collection, and Preservation
+ ESI Triage Services
+ Data Discovery Consulting and Management

In addition to these Forensics First offerings, customers are also supported by a broad portfolio of legal discovery and document review services as part of HaystackID’s Early Case Insight and ReviewRight offerings.

About HaystackID

HaystackID is a specialized eDiscovery services firm that helps corporations and law firms find, listen, and learn from data when they face complex, data-intensive investigations and litigation. With an earned reputation for mobilizing industry-leading computer forensics, eDiscovery, and attorney document review experts, HaystackID’s Forensics First, Early Case Insight, and ReviewRight services accelerate and deliver quality outcomes at a fair and predictable price.

Serving more than 500 of the world’s leading corporations and law firms from North American and European locations, HaystackID’s combination of expertise and technical excellence coupled with a culture of white glove customer service make it the alternative legal services provider that is big enough to matter but small enough to care. Learn more today at HaystackID.

Read the complete release at HaystackID Appoints CISO As Part of Expanding Information Security Investment

Additional Reading

Source: ComplexDiscovery

ComplexDiscovery combines original industry research with curated expert articles to create an informational resource that helps legal, business, and information technology professionals better understand the business and practice of data discovery and legal discovery.

All contributions are invested to support the development and distribution of ComplexDiscovery content. Contributors can make as many article contributions as they like, but will not be asked to register and pay until their contribution reaches $5.