Managed IT Services Provider

Scope of Services

The selected IT provider will be responsible for delivering proactive, responsive, and secure IT

services, including but not limited to:

• Daily IT Support: Troubleshooting for hardware, software, and network-related issues
• System Maintenance: Regular updates and optimization of all office IT systems
• Cybersecurity: Implementation and monitoring of security protocols to protect client data and ensure legal compliance
• Data Backups: Setup and management of regular data backup systems (cloud/local as needed)
• Infrastructure Management: Oversight of cloud-based servers and any third-party integrations
• Software Management: Updating legal case management systems, productivity software, antivirus, and firewalls
• Virtual Desktop Management: Provisioning, maintaining, and securing virtual desktops for all employees
• Employee Offboarding Support: Ability to remotely wipe company data from employee devices upon termination.
• Ability to lock out employee access to all systems, emails, and files when needed
• Emergency Response: Availability for urgent issues during business hours or by prior arrangement
• Compliance: Adherence to legal industry standards as outlined below

Compliance & Security Requirements

The selected provider must ensure all services align with the professional and ethical obligations of law firms under American Bar Association (ABA) and New Jersey state guidelines.

Specific requirements include:

ABA Cybersecurity Standards

• Implement reasonable security measures under ABA Model Rule 1.6(c)
• Implement and maintain reasonable administrative, technical, and physical safeguards, including:
• Secure access controls (e.g., multi-factor authentication, user roles)
• Data encryption (both in transit and at rest)
• Endpoint protection on all employee devices
• Intrusion detection and system monitoring
• Secure and auditable file-sharing systems
• Perform regular security assessments and updates
• Prevent unauthorized access to client information
• Ensure confidentiality is preserved across all devices, applications, and platforms used by the law firm
• Encrypt client data at rest and in transit
• Regularly patch and update all systems to prevent vulnerabilities
• Conduct ongoing monitoring for unauthorized access or breaches
• Maintain client confidentiality across all platforms and tools
• Ensure confidentiality is preserved across all devices, applications, and platforms used by the law firm – and its contractors/vendors.

New Jersey Rules of Professional Conduct

• Comply with RPC 1.1, 1.6, and 1.15 regarding competence, confidentiality, and safeguarding client property
• Maintain secure, retrievable records for a minimum of 7 years, unless otherwise directed
• Ensure all digital and physical legal files are protected from unauthorized access, loss, or destruction
• Enable controlled file access to authorized personnel only
• Support secure digital archiving, file-sharing, and destruction protocols
• Use systems that maintain proper audit logs and access records

Preferred Qualifications

• Proven experience supporting small to mid-size law firms
• Deep understanding of legal industry security protocols (ABA, state-specific)
• Strong background in managing cloud environments (e.g., Microsoft 365, Google Workspace, AWS, etc)
• Familiarity with legal software tools and secure document management platforms

Availability & Response Expectations

• Service during regular business hours (Monday to Friday)
• Emergency support required when planned or as part of service-level agreement
• Proactive monitoring and issue resolution expected

Compensation

• Monthly retainer (to be discussed)
• 1-year contract, with potential for renewal based on performance

Job Type: Full-time

Work Location: In person