Business Security Weekly (Audio) Planning A Merger Or Acquisition? Ask These Five Cyber Questions First - Craig Davies - BSW #371
15 snips
Nov 5, 2024 Craig Davies, Chief Information Security Officer at Gathid, shares his extensive cybersecurity expertise in navigating mergers and acquisitions. He highlights five critical cyber questions that companies must address to safeguard their transactions. The discussion emphasizes the often-overlooked cybersecurity risks that can turn a promising merger into a disaster. Davies also critiques the traditional role of CISOs and advocates for new leadership styles and strategies to manage team dynamics and human error effectively in high-pressure environments.
AI Snips
Chapters
Transcript
Episode notes
Cyber Is Too Often Kicked Down The Road
- Cyber often becomes an afterthought in M&A, leading to hidden technical and operational surprises.
- These surprises can materially affect the acquired company's value and integration cost.
Turning Up To A Swedish Inbox
- Craig relates turning up to an integration and finding systems in Swedish as an example of poor visibility.
- He uses this to illustrate how surprises appear when security is excluded from M&A planning.
Insurance Isn't A Substitute For Due Diligence
- Cyber insurance cannot substitute for due diligence because insurers will check your duty of care and due diligence after a claim.
- Buying insurance without solid controls and documented due diligence offers little practical protection.