Cyber Security For Mergers and Acquisitions
We help companies make good decisions when it comes to M&A.
A pain point in today's M&A world is A lack of information about what The Buy-Side is actually getting.
Don't Buy a Breach!
With all of the privacy legislation (GDPR, CCPA, etc) passed recently, the need to know what you are buying has never been greater. When you buy a company, you are also buying their cyber hygiene, recent breaches, and ongoing data leakage.
Our team will conduct a thorough due diligence risk assessment that measures cyber security maturity. We then zero in on the most serious cyber security risks and deliver discrete recommendations for where and how to best reduce the risks and take control.
We Do An Assessment
Our consulting team will review all current security policies, procedures, and plans. We dig deep into network analysis, interviews, and onsite observations.
We Deliver Results
We deliver an executive summary along with a full report detailing our findings and quantifying risk into actual dollars.
Decisions Are Made
With dollar quantifiable information in front of you, important decisions can be made to reduce the security risks that threaten your bottom line.
Our team of cyber security consultants dig deep and find the information you need to make good decisions.
Basic Cyber Review
Our team will review your cyber security policies, procedures, training, documentation, and emergency plans. We will point out anyplace your security program is inefficient, ineffective, or out of date. After the cyber security review is completed, we can work with you to fully develop a cyber plan.
Our Standard Risk Assessment focuses on an organization's most serious threats. This provides you with generalized determinations of the organization’s maturity, strengths, and weaknesses, and high-level action plans for where to focus risk mitigation efforts.
Our team will conduct a thorough onsite risk assessment that measures an organization’s maturity. We will then zero in on the most serious cybersecurity risks with dollar-quantified insight into the organization’s exposure, and deliver discrete recommendations for where and how to best reduce the risks and take control of cybersecurity.
You Get Dollar-Quantified Risk Exposure and Dollar-Quantified Data Privacy Exposure Reports. This information is great for insurance decisions and final purchase price decisions.
Our Leaders Have Decades of Experience
Chief Operating Officer
John Gerdes (CISSP, Associate HCISPP, GCED) has years of experience solving organization-level problems in cyber security risk management and regulatory compliance. John leads Secure Merger’s cyber risk assessments and compliance audits, breaking down organizations’ cyber risk.
Chief Security Officer
Leighton Johnson (CISSP, CISA, CISM, CIFI, CAS-CTR, CRISC, C|CISO, FITSP, ISSEP, ISSMP, CIOTP) has over 35 years experience in computer security, cyber security and software development. Specialties include: digital forensics, risk assessments, incident response team management and secure code reviews. Leighton leads the Secure Merger M&A team.
Takes 3 Weeks
The Basic Cyber Review let's you know where the target company stands on cyber policy and documentation.
Takes 4 Weeks
Everything in the Basic, plus we also conduct onsite interviews with the IT team and the C-Suite.
Takes 5+ Weeks
Comprehensive onsite assessment designed to give you dollar-quantified detailed reports.