Providing specialist knowledge and experience to help organisations navigate technology and information risks.

Continual developments in technology and the expansion of data requires businesses to take an active role in managing strategic risks, such as cybersecurity and data privacy, and respond to information risk management requirements specific to investigations, potential litigation and regulatory enquiry.

Our highly experienced technology specialists help clients proactively manage technology and information risks. We work closely with our clients to set strategies and design frameworks that identify and mitigate risks, such as cybersecurity and data protection.

We are regularly called upon by our clients to clarify often complex technology, information or risk-related matters and work with them to plan a practical approach. We are technology agnostic and level-headed, particularly in times of crisis, and help our clients set frameworks that will operate effectively in pressure situations.

We focus on the human element of information risk, working with our clients to build programs that capitalise on the defensive opportunity that a cyber-aware, well-informed workforce presents.

Our Technology Services


Quantify, mitigate and actively manage Cyber & Information Risk.

Cyber & Information Risk (CIR) is a persistent business threat that needs to be quantified, mitigated and actively managed as part of strategic and operational practices. The days of CIR being an IT issue are well behind us. CIR is also not a roadblock to innovation and change; it is a necessary partner.

We work closely with our clients to help develop strategies and design frameworks to identify and manage risks with the aim of long-term resilience. Resilience is an organisation’s ability to prepare for, respond to and recover from CIR incidents. Resilience is more than just preventing or responding to an incident – it takes into account the ability to operate, and to effectively incorporate the valuable lessons we learn, in a time of crisis.

Our holistic approach is information driven, risk based and deeply technical when required. We work with our clients to invest time in their people and make them a part of the solution, helping ensure a sustainable result. We help write and review strategies and frameworks that provide the foundation from which leaders and employees can make well-informed decisions. We also take a hands-on approach with our clients, helping respond to cyber incidents when the pressure is on and the stakes are high.


Digital Forensics

Protect one of your organisation's most valuable assets.

Information is one of your organisation’s most valuable assets, which makes its loss or interference one the most critical risks. In today’s digital age, organisations of all kinds create and rely on commercially sensitive information, financial information, intellectual property, strategic plans, mergers and acquisition data and a raft of other mission-critical information on a daily basis. This often comes with a complex overlay of user access and physical storage locations.

When an incident arises – such as unauthorised access, theft, accidental or deliberate deletion of data – a response plan is enacted. A digital forensic investigation is often one of the first steps on a path to recovery.

Digital forensics is a highly specialised skill set that combines a deep technical knowledge of systems and applications with a detailed forensic process of evidence identification, preservation, collection and analysis. We help you quickly get to the bottom of who, when, what, where and how.

Our technology team is internationally recognised, with certified computer forensic specialists who have conducted hundreds of computer, mobile, cloud and server based forensic investigations. We help our clients quickly and comprehensively respond to unwanted events.

Our experts have a foundation in law enforcement and the Australian Defence Force and are certified members of the International Society for Forensic Computer Examiners (ISFCE), as well as being members of relevant industry bodies, including Australian Information Security Association, Information Systems Audit and Control Association (ISACA) and Information Governance Australia ANZ.


Information management for investigations and litigation.

Now that email and other digital platforms are the primary sources of our personal and professional communication, systems and applications are expected to store larger and more historical volumes of information on a daily basis. This expansion has numerous flow-on effects, one of which is the challenge of managing and sifting through great volumes of electronic information when conducting investigations and responding to large-scale litigation.

When an organisation is required to respond at short notice to regulatory pressure, manage large volumes of information for commercial litigation or scrutinise information for an investigation, specialist help is often required. In-house IT teams using native systems often do not possess the specialist knowledge or have the capacity to achieve what is required within the timeframe.

The technology team at McGrathNicol is one of the foundational, large-scale electronic information discovery practices in Australia. We specialise in technology-enabled, End-to-End (E2E) electronic information management for investigations and litigation. Our E2E solution has become critical to helping our clients run timely and cost-effective investigations, litigations and regulatory compliance programs.

Our specialist electronic information management solution is built on the back of industry-leading iPro Technologies that take you from identification of potentially relevant data, all the way through to the production of only relevant information, using advanced analytics and specialist techniques. We have a dedicated team of highly experienced staff who have been performing this work for more than 18 years. We have worked on some of Australia’s largest investigations and litigations, operating in all state Supreme Courts and the Federal Court, as critical parts of Regulatory response initiatives and as part of Royal Commissions.