Since significant M&A due diligence activity centers on on valuation both of the asset today (point in time) and as an ongoing source of positive economic activity, risk assessment has long been a foundation of transactions. The dawning realization among [some] M&A due diligence teams is that risks…
I attended a Cyber Security presentation this morning organized by a leading insurance and benefits provider with offices in St. Louis. They brought together speakers representing brokers, wholesale as well as accounting and audit to discuss cyber security with business owners.As they build momentum around cyber-liability offerings, it’s becoming clear…
If you have the curiosity and time, I recommend reviewing NIST Special Publication 800-115, "Technical Guide to Information Security Testing and Assessment". In addition to being 80 pages of excitement and fun, this document provides us with rich details on testing information technology systems using a consistent approach. For the sake…
As more states ratchet up the penalties for data breach notification and remediation, the costs of even small (sub 10,000 record) breaches soar. Even small professional practices often can count several thousand consumer or business records in their systems. Exposing several thousand in a breach and having to offer credit…