Overview
Explore a comprehensive 30-minute conference talk from RSA Conference on implementing cybersecurity due diligence in mergers and acquisitions. Learn how to protect the buy side and evaluate the sell side through a robust cyber DD program. Discover key metrics for informed M&A decisions, understand the importance of conducting cyber DD before other due diligence activities, and gain insights into deal room security, risk profiles, and security testing validation. Examine real-world examples like the Marriott-Starwood data breach, and understand the crucial difference between compliance and security. Apply practical knowledge to both buy-side and sell-side scenarios in this informative session presented by Murray Goldschmidt, Chief Operating Officer at Sense of Security Pty.
Syllabus
Intro
Raised Risk Profile
Deal Room - Jurisdiction
Deal Room - Data Governance
Deal Room - Data Retention
Deal Room - Access Control
Deal Room - Application Security
Buy Side - Advisors
General Deal Risk - Extension to Cyber
Marriott - Starwood Data Breach
Sell Side - Security Testing Validation
Difference between compliant and Secure!
Sample Test - Dynamic Risk Assessment
Cyber DD - Insights You Need to Know
Apply - Buy Side
Apply - Sell Side
Taught by
RSA Conference