Security Trust Centre

Start your security review
View & download sensitive information
Ask for information
ControlK

Overview

MinterEllison's Security Program

MinterEllison takes IT and cybersecurity seriously and will continue to undertake several important operational and strategic Information Security initiatives across the firm.

MinterEllison's Information Security Program aims to:

  • Develop and implement the Information Security Policy which underpins the controls, standards and guidelines for all aspects of security to protect and assure availability of all MinterEllison's and its clients' information, data and systems.

  • Monitor and strengthen MinterEllison's information security practices that ensures that all sensitive information is protected from inadvertent disclosure, fraud, misappropriation, misuse, sabotage or cyber threats.

  • Ensure the integrity and accuracy of all MinterEllison electronic information systems and to prevent damage or loss to Minter Ellison information, its operations and client information.

  • Report and maintain MinterEllison's security posture against policy, risk and compliance to industry best practices.

Compliance

Cyber Essentials Logo
Cyber Essentials
ISO/IEC 27001 Logo
ISO/IEC 27001
ISO/IEC 27001 SoA Logo
ISO/IEC 27001 SoA
ProcessUnity Logo
ProcessUnity
SOC 2 Type 2 Logo
SOC 2 Type 2
Essential 8 Logo
Essential 8

Documents & Policies

Featured Documents

DOCUMENTS & POLICIESMinterEllison Cybersecurity Controls
AUDITS & REPORTSAPRA CPS 234
AUDITS & REPORTSASD Essential 8
AUDITS & REPORTSMinterEllison Information Security Program
COMPLIANCECyber Essentials
COMPLIANCEISO/IEC 27001
COMPLIANCEISO/IEC 27001 SoA
SECURITY POLICIESCybersecurity Incident Response Plan
SECURITY POLICIESInformation Security Policy

Audits & Reports

APRA CPS 234
ASD Essential 8
MinterEllison Information Security Program
View more

Supply Chain Security

Third PartiesMimecast-company-logoMicrosoft-company-logoKiteworks-company-logoAmazon Web Services (AWS)-company-logoThomson Reuters-company-logo
Data Breach Notifications
Data Security Summary Statement - eDiscovery
View more

System Security

Access restriction to files
Email Protection
File Sharing
View more

Personnel Security

Background Checks
Cybersecurity Awareness
Onboarding
View more

Data Security

Backup
Client Data Security
Data Classification
View more

Application Security

Application Whitelisting
Patch Management
Software Development
View more

Artificial Intelligence

AI Platforms Security
AI Governance
AI Training Data
View more

Modern Slavery

Modern Slavery

Legal | Privacy

Legal Notices
Privacy Policy
Terms of Use

Access Control

Access Controls (SSO | Remote)
Multi Factor Authentication
Password Security

Infrastructure

Security Incident Management
Asset & Information Management
Disposal of Media
View more

Endpoint Security

Disk Encryption
End Device Security
Endpoint Detection & Response
View more

Network Security

IDS/IPS
Network Access
Network Segregation
View more

Physical Security

CCTV
Computer Room Access
Physical Access - Policy
View more

Security Policies

Change Management
Clear Desk Policy
Cloud Hosting Policy
View more

Security Grades

SecurityScorecard
MinterEllison
Security Scorecard A grade
Qualys SSL Labs
MinterEllison
A
Security Headers
MInterEllison
A
View more

Risk Management

Business Continuity Plan
Business Resilience Framework

Data Governance

Data Classification Standard
Data Management Principles
Data Retention and Disposal
Knowledge Base (FAQ)
Security Trust Centre Updates

WatchGuard Firebox vulnerabilities

Copy link
Vulnerabilities

MinterEllison is aware of the recently disclosed vulnerabilities affecting WatchGuard Firebox devices. We do not use the affected software/device and confirm there is no impact to MinterEllison or its clients.

Dodo and iPrimus Data Breach

Copy link
Incidents

MinterEllison is aware of recent Dodo and iPrimus data breach. We are able to confirm that none of MinterEllison or its client's data is impacted by this data breach. We are further monitoring the situation.

F5 Vulnerabilities

Copy link
Vulnerabilities

MinterEllison is aware of recently disclosed vulnerabilities affecting multiple F5 platforms. We do not use the affected software and confirm there is no impact to MinterEllison or its clients.

Fraudulent social media activity

Copy link
General

MinterEllison is aware of the existence of certain fraudulent social media pages impersonating the firm, some of which include unauthorised use of our MinterEllison logo. We have reported this activity to the relevant social media platforms and requested its removal.

If you receive a communication which purports to be in our name, please contact us via our official website.

Salesloft Drift Breach

Copy link
General

MinterEllison is aware of the recent reports of Salesloft drift breach. We do not utilise Salesloft in our operations and are not affected by it. We are monitoring the situation closely and are working with our suppliers to assess any potential indirect impact.

If you think you may have discovered a vulnerability, please send us a note.
Report issue