Boston Bar Association White Collar Crime Conference
CRA is a proud sponsor of this annual conference. For more information on this event, click here.
Cyber due diligence assessments are an essential way to maximize value for sellers and minimize risks for buyers. Conducting pre-acquisition cyber due diligence on M&A deals enables information security and privacy risks to be identified and addressed in the financial and contracting terms. Conducting post-acquisition cyber due diligence can deliver even deeper information security and privacy insights, and provide support for strategic decisions on whether, when and how to integrate IT systems. CRA’s cyber due diligence services provide the visibility required to identify and assess information security and risks in a timely manner and enhance the likelihood of deal success.
We collaborate with clients to develop a risk-based approach to cyber due diligence assessments. The assignments can range from interviews and analytical inquiries to a robust compromise discovery assessment, which encompasses the threat intelligence portfolio of the target entity, including a risk assessment that considers numerous information security industry standards (ISO, PCI, HIPAA/HITECH, NIST). The workstream can conclude with a readiness assessment to help assess the target’s existing incident response capabilities.