SlideShare une entreprise Scribd logo

Mergers & Acquisitions security - (ISC)2 Secure Summit DACH

EQS Group
EQS Group

It does not have an ISO standard. NIST barely mentions it. Despite hundreds of publications, no dedicated book is in sight. Enterprise Risk Management frameworks barely touch on it - if they even do. A chapter in Tipton's book dating 2007, proprietary solutions and sparse articles is all we have. In 2007 there was no Cloud yet - and that can be both a big help or a major issue in the process. Mergers & Acquisition is a matter left to Business Administration professionals, who don't like thinking about Information Security risks anyway. Information Security for Mergers & Acquisition is often an afterthought and rarely a deciding factor in due diligence exercises - but when your company acquires a new firm every quarter, you need to start thinking about something. This session will propose a simple framework and you will walk away with an actionable material you can start using tomorrow. Learning Objectives: - Understand information security risks and threats connected with merger and acquisition activities, which include months of often precarious IT migrations, a Cloud mess, and legacy services left exposed for months or years. - Understand how Cloud Computing affects information security risks and threats during a merger and acquisition activities, as well as the positive opportunities they can offer. - Why it is important that Information Security is involved in the early phases of due diligence, including during the phases in which the deal is structured and evaluated, and the acquisition model is defined. - Walk home with a simple framework and actionable material they can start using the day after.

Direction et management
1  sur  89
Télécharger pour lire hors ligne
Security in M&A: The Forgotten Son of Information Security Marco Ermini, 2017
Agenda » Why M&A need Cyber Security support? » Aren’t they just ordinary business transactions? » They seem to occur nearly every day, so what is so special about them that they require special security support, or any security support at all? » What value does a security professional bring to the team?
The Academic Minute… » Black’s Law Dictionary defines mergers and acquisitions as the following: • Merger: The union of two or more corporations by the transfer of property of all, to one of them, which continues in existence, the others being swallowed up or merged therein… • Acquisition: The act of becoming the owner of a certain property… • Divestiture: to deprive; to take away; to withdraw
The Academic Minute… » Acquisition of Total Assets • Liquidate • Break up and sell • Integrate » Acquisition » Merger » Divestiture
The Academic Minute… » It is all about… 1. Costs Control, 2. Market Share, 3. Regulatory Landscape 4. Others…
Business Drivers » Confidentiality » Speed » Business as usual • Zero Impact » Informed Business Decision on Risk
Why M&A Fail? » The acquiring company does not properly assess the value of the target company » Inability of the acquiring company to successfully integrate the target company that leads to a failed acquisition “It is well known in the M&A community that most acquisitions fail to create shareholder value, that is, they end up as a negative sum after paying acquisition premium and banker fees, impossible to get synergies to make up loss. The acquisitions that do create value are either a version of corporate venture capital (large company scooping tiny team), or mid-cap industrials buying a supplier. Few and far between…“
Typical M&A Diagram Flow
The Four “C”s
The Four Cs » Capture » Connect » Combine » Consolidate
Threats and Response
Scoping the Threats » Special Interest Groups – gain from the Operation • Financial Criminals • Competitors • Acquisition / Merger Company • Disgruntled Employees » General Interest Groups – gain from Impact • Script Kiddies / Hackers • Hacktivists / Terrorists • Spies
Scoping the Risks » Publicity, raising profile — your interest gets attacker’s interest! » Impact on: • Resources • Technologies • Infrastructure » Disgruntled Employees » Change in threat and risk model » Absorbing unknown / Confusion » Creating new attack vectors and window of opportunity » Business drivers can force this the Security Manager very quickly » Are we all really equipped for change?
The Security Manager
The Role of a Security Manager » Protecting the effort itself • Confidentiality of the total effort • Confidentiality of the team’s work » Evaluating the security condition of the target company • Impact on the deal’s value • Asking the right questions » Providing subject matter expertise • Identify Security Requirements for the New Company • Controlling Rumors • Managing Global/International Aspects • “Team Consultant” • Low Hanging Fruits
Importance of Confidentiality » Premature Disclosure of Intent • Loss of key employees • Bidding wars • SEC Liability • Loss of Initiative • Loss of Goodwill - Target Company - 3rd Parties relationships - Customer relationships
Protecting the operation » Unintended Release » Unauthorized Release » Protection from competitive intelligence efforts » Documents Control
The Security Manager in action » Preliminary background investigations • Collection of Open-Source information » Due diligence • More in-depth look • Estimation of Costs of Cyber Security » Operations security • Protect operational activities • Develop and implement protective measures • Appropriate for each phase of the acquisition
Preliminary Work
How can I verify an M&A Target candidate? » You cannot explicitly test your acquisition’s candidate » You cannot simply ask them for their vulnerability assessments’ results » Not all companies have a structured and mature security program » You cannot silently test them either
External Sources » Professional Associations » Service Providers » Public (Open) Sources » Job Applications/Job Postings
How that does look for real…
Due Diligence
Download the Kit Toolkit: https://github.com/markoer73/M-A
“Capture” of Security Controls » 13 Domains to verify 1. Digital Identities 2. Admin Accounts 3. Endpoints/Client Systems 4. Servers 5. Networks 6. Hosting 7. Email 8. Data Recovery 9. Boundary Defenses 10. Assets Inventory 11. Operational Security 12. Physical Security 13. Wireless Networks
Example of Policy Requirement Domain Verification How-to Objectives Minimum Acceptable Level Digital Identities Verify status of identities in main identity store (use of unique IDs, generic accounts, password policy, Groups’ usage, GPOs, Federations, etc.). Verify if anything is outside of the main identity store (e.g. VPN accounts, Cloud accounts, supplier accounts, etc.).  Interview with IT admins from Target.  Snapshot of information from AD/LDAP.  Interview with business units which manage other tools (Cloud etc.), to understand how this is managed  Ensure appropriate controls are in place to protect Target environment and data  Get an idea of the complexity of the DI structure of the Target.  Understand usage of Cloud applications and identities.  Understand how restriction of access to information happens in Target.  There is a Directory Service  Unique IDs are used  Permissions are assigned via Groups in the Directory Service  Service and Cloud accounts are gathered, minimized, and under control  Sensitive files are shared in a secure way Admin Accounts Verify status of admin account management in main identity store, if managed there. Verify if anything is outside of the main identity store (e.g. VPN accounts, Cloud accounts, supplier accounts, etc.)  Interview with IT admins from Target.  Snapshot of information from AD/LDAP and other tools.  Ensure admin account controls are defined, implemented and reviewed to protect systems and data  Understand how IT administrative actions are performed, what the procedures and practices are, and who has the ownership and responsibility.  Admin accounts are managed under a Directory Service  Admin accounts are unique for each admin  Central ownership of who gets appropriate rights  Process for removing rights as appropriate
Example of Interview Questions Domain Minimum Acceptable Level Key Topics for Discussion Digital Identities  Directory Services of any kind are used  Unique IDs are used  Permissions are assigned via Groups in the Directory Service  There is an adequate password policy in place  Service and Cloud accounts are gathered, minimized, and under control  Sensitive files are shared in a secure way  How many people are present in the company? Get overview of employees’ org chart/roles, and how many people are in IT and Security.  How old is the company? Get brief history, acquisitions, etc.  Which DS is used? (AD, which version?)  Get overview of Groups, GPOs, shared accounts, shared mailboxes, federated services, password policy (for AD, request screenshots).  Is every system and device connected to DS and follow password policy, or there are systems which have their own passwords (e.g. Wi-Fi, network devices, etc.)?  What is the process by which Group ownership, permissions and accesses to systems and applications are granted?  Get overview of Cloud services used and how accounts are managed, if SSO is used and how, especially concerning files and documents sharing with third parties.  Is Cloud Sharing such as Box, Dropbox etc. being used? Admin Accounts  Admin accounts are managed under a Directory Service  Admin accounts are unique for each admin  Central ownership of who gets appropriate rights  Process for removing rights as appropriate  Get overview of how administration is performed, if AD Groups and GPOs are used, if shared accounts and/or shared mailboxes are used for admin accounts  Understand how permissions are granted and removed from users as their work and function changes in the company
Risk Assessment » Management Summary with a clear status » Clearly indicate the area that will need additional attention » Especially indicate where the additional costs will incur (e.g. new wireless equipment, re- imaging of the endpoints, reimplementation of firewall, etc.)
Impact Assessment » Indicate the kind of impact: • Security • Processes • Costs » Indicate expected remediation, aligned with IT » If not possible to estimate costs immediately, indicate how they should be calculated (e.g. need to provision new firewall cluster)
Summarize Findings aligned with IT – in one Slide
Costs aligned with IT for integration
Connect
Starting to work in Clear Sight » The news is out » Information Completeness is paramount » An Integration Plan is proposed • Technical Integration - Networks, PCs, applications, data centers, hosting… • Business Processes and Systems • Timing » The Integration Plan must also negotiate from an “as- is” to a “to-be” state for the Target
Combine
Target Characteristics Security Guidelines SLAs SMALL ➤ Small employee base (< 200 employees) ➤ Low complexity ➤ Private ownership ➤ Little to no geographical diversity ➤ No separate legal entities ➤ No/limited need to keep the same facilities ➤ No/limited to keep the existing technologies ➤ Purchased for limited product portfolio, technology, talent, or local presence ➤ Baseline security controls Target is fully absorbed into IT infrastructure ➤ All IT labor is absorbed into IT global business units ➤ Security controls established or confirmed in less than 100 days MEDIUM ➤ Similar to previous kind, but Target has certain identifiable complexities that require specific sensitivity during integration ➤ Fewer than 500 employees ➤ Needs to be stand-alone for a certain period of time ➤ During stand-alone time, Target maintains defined non-compliances ➤ Supports its own IT infrastructure during the stand-alone phase ➤ Integration of Target may be full, hybrid, or standalone ➤ All IT labor is absorbed into IT global business units ➤ Operation integration of some IT infrastructure may take +180 days ➤ Processes may take 3 to 9 months LARGE ➤ More than 500 employees ➤ Relatively large operations ➤ Significant multinational presence and subsidiaries ➤ Target contains certain identifiable complexities that require specific sensitivity during integration ➤ Integration of Target may be full, hybrid, or standalone ➤ IT labor can stay funded by Target company ➤ Operation integration of some IT infrastructure may take +180 days ➤ Customized integration plan ➤ IT Support is shared ➤ Processes take more than 12 months
Combining the two companies » Resources, staffing, processes, and systems are combined » Business processes are as much as possible leveled » IT tools are unified » Active Directory merging strategy is key! » The Target company has comparable / same security » Exceptions are documented and signed off by leadership (executives, CISO) » Agreed-upon designs are implemented » Operations — including InfoSec – are turned to standard support » Weekly or recurring meetings can be setup to assess progresses
Planning the Active Directory Integration » Training for the technicians performing the migration » Scheduled outages » Companies’ cultural differences such as who's allowed access to AD and Exchange, or how file system security is set » Network differences between the two sites » Network, AD, or Exchange anomalies » Customer and employee communication
Pain Points in Active Directory Integration » Deciding the strategy • Integrate the Target into the Acquiring • Build a new, combined AD • Migrate legacy objects into a new AD » One Company, One Email! • Free/Busy Information • Exchange/Lync/Office/AD versions • Office 365? » External Federations/Partners/ADFS? » DNS configuration/forwarding » SID history/filtering » Evaluate purchase of a dedicated AD migration/upgrade tool
Adjusting Policies
Merging Policies » Safeguards against disgruntled employees » New employee contracts • Are existing Policies still relevant? • Are we “dumbing down” their security? » Existing employee contracts • Do they protect you? • Do they meet new relationship? » Identify key policies — yours vs theirs • Work with Legal Departments
Merging InfoSec
The New Security Department » Cost/Budgeting • Pre-merger: OpEx • Merger: CapEx, Processes • Post-merger: Optimization » Communications
What if I am on the weak side? 1. Identify specific strengths that can be useful in the merging • Experience from security incidents • Technological implementations • Local knowledge and compliance 2. Be prepared to learn • What is the current Cyber Security philosophy? • Who is taking security-related decisions? 3. Don’t rush your career decisions • Can bring new opportunities • Meet the new management
Leveraging the Cloud
Cloud Email Gateways
SaaS WAF/CDN
Moving to a Cloud-Based ERP or Email Solution » Traditional M&A dogma is “transition, then transform” » Companies however are leveraging migration to key technologies to the Cloud during the M&A process as an enabler » Can simultaneously replace aging, capital-intensive technology with a subscription-based operating model » Ideal also for divestitures » Boarding is considerably faster and cheaper than traditional on premise solutions (Accenture estimates 30% for both) » Ultimate flexibility during a post-deal transition
Cloud WAF/CDN
Open Source information gathering Backup Slides
Open Source Intelligence » Collection of free tools and source of information » They divide into • Tools which can run locally • Search Engine “dorking” (e.g. Google hacking) • Semi-closed sources • Exploitation of sites which have originally other purposes (e.g. social networks, dating sites…) 51
METASPLOIT recon-ng 52
FOCA Search 53
Job Posting’s Harvesting 54
Job Posting’s Harvesting 55
Job Interviews’ Harvesting 56
robtex. com 57
robtex.com 58
Harvesting of Corporate Emails 59
Gathering of domain names 60
Gathering of domain names 61
Old (and new) fashion scanning 62
Maltego 63
Maltego 64
Maltego 65
Maltego 66
Maltego 67
Maltego 68
NMAP 69
censys.io (semi-free) » Parsing and collection of various publically-available information » Example: certificates • SSLVPN in France and Munich • Date Center presence in Munich, San Diego, Sydney • Demo-site of Hybrid (e-commerce technology) • Using Akamai services in Sydney 70
censys.io - Geolocation 71
shodan.io 72
VIPs “Dorking” 73
VIPs “Dorking” 74
VIPs “Dorking” 75
VIPs “Dorking” 76
Cyber Security Ratings Firms 77
CyberSecurity Ratings Firms 78
CyberSecurity Ratings Firms 79
CyberSecurity Ratings Firms 80
CyberSecurity Ratings Firms 81
Data Breaches 82
CyberSecurity Ratings Firms 83
CyberSecurity Ratings Firms 84
CyberSecurity Ratings Firms 85
CyberSecurity Ratings Firms 86
CyberSecurity Ratings Firms 87
Bibliography » “Mergers and Acquisitions Security – Corporate Restructuring and Security Management” (E.P. Halibozek, Dr. G.L. Kovacich), Elsevier, 2005 » “Information Security in Mergers & Acquisitions” (C. Conacher), Black Hat 2004 » “Handling mergers and acquisitions: Career success tips for infosec pros”, searchsecurity.techtarget.com » “Using Open Source Reconnaissance Tools for Business Partner Vulnerability Assessment” (SANS Institute InfoSec Reading Room), 2014 » “Why people integration continues to dominate M&A challenges”, PWC, 2012 » “Plan and Execute an Active Directory Merger”, windowsitpro.com, 2009 » “The Three Steps to Consolidate the Active Directory Environments of Merging Organizations”, binarytree.com, 2015 » “Collaborations, mergers, acquisitions, and security policy conflict analysis” (V. Subramanian, R. Seker, J. Bian, N. Kanaskar, acm.org, 2011 » “Alignment of the IS Organization: the Special Case of Corporate Acquisitions” (C.V. Brown, J.S. Renwick), 1996 » “M&A loves the cloud”, “M&A Trends”, Deloitte, 2016 » “Driving growth and competitiveness: Can the power of cloud lift M&A value into the stratosphere?”, Accenture, 2016 » “Lifecycle of a Technology Company – Step-by-step legal background and practical guide from start-up to sale”, E.L. Miller Jr., John Wiley & Sons, 2008 » “Mergers and Acquisitions from A to Z” 3rd ed., A.J. Sherman, AMACOM, 2011 » “Digging for Disclosure – Tactics for Protecting Your Firm’s Assets from Swindlers, Scammers, and Imposters”, K.S. Springer and J. Scott, Pearson Education, 2011 » “Mergers & Acquisitions For Dummies Cheat Sheet” – dummies.com » “The Complete Guide to Mergers & Acquisitions: Process Tools to Support M & A Integration at Every Level, Third Edition”, T.J. Galpin, Wiley, 2014 88
THANK YOU! Marco Ermini 2017

Recommandé

M&A security - E-crime Congress 2017
M&A security - E-crime Congress 2017M&A security - E-crime Congress 2017
M&A security - E-crime Congress 2017EQS Group
 
Mergers and Acquisition Security - Areas of Interest
Mergers and Acquisition Security - Areas of InterestMergers and Acquisition Security - Areas of Interest
Mergers and Acquisition Security - Areas of InterestMatthew Rosenquist
 
Chapter 12 iso 27001 awareness
Chapter 12 iso 27001 awarenessChapter 12 iso 27001 awareness
Chapter 12 iso 27001 awarenessnewbie2019
 
Cybersecurity solution-guide
Cybersecurity solution-guideCybersecurity solution-guide
Cybersecurity solution-guideAdilsonSuende
 
Information Security Benchmarking 2015
Information Security Benchmarking 2015Information Security Benchmarking 2015
Information Security Benchmarking 2015Capgemini
 
Cybersecurity Priorities and Roadmap: Recommendations to DHS
Cybersecurity Priorities and Roadmap: Recommendations to DHSCybersecurity Priorities and Roadmap: Recommendations to DHS
Cybersecurity Priorities and Roadmap: Recommendations to DHSJohn Gilligan
 
Cybersecurity Roadmap Development for Executives
Cybersecurity Roadmap Development for ExecutivesCybersecurity Roadmap Development for Executives
Cybersecurity Roadmap Development for ExecutivesKrist Davood - Principal - CIO
 
The Next Generation of Security Operations Centre (SOC)
The Next Generation of Security Operations Centre (SOC)The Next Generation of Security Operations Centre (SOC)
The Next Generation of Security Operations Centre (SOC)PECB
 

Recommandé

M&A security - E-crime Congress 2017
M&A security - E-crime Congress 2017M&A security - E-crime Congress 2017
M&A security - E-crime Congress 2017EQS Group
 
Mergers and Acquisition Security - Areas of Interest
Mergers and Acquisition Security - Areas of InterestMergers and Acquisition Security - Areas of Interest
Mergers and Acquisition Security - Areas of InterestMatthew Rosenquist
 
Chapter 12 iso 27001 awareness
Chapter 12 iso 27001 awarenessChapter 12 iso 27001 awareness
Chapter 12 iso 27001 awarenessnewbie2019
 
Cybersecurity solution-guide
Cybersecurity solution-guideCybersecurity solution-guide
Cybersecurity solution-guideAdilsonSuende
 
Information Security Benchmarking 2015
Information Security Benchmarking 2015Information Security Benchmarking 2015
Information Security Benchmarking 2015Capgemini
 
Cybersecurity Priorities and Roadmap: Recommendations to DHS
Cybersecurity Priorities and Roadmap: Recommendations to DHSCybersecurity Priorities and Roadmap: Recommendations to DHS
Cybersecurity Priorities and Roadmap: Recommendations to DHSJohn Gilligan
 
Cybersecurity Roadmap Development for Executives
Cybersecurity Roadmap Development for ExecutivesCybersecurity Roadmap Development for Executives
Cybersecurity Roadmap Development for ExecutivesKrist Davood - Principal - CIO
 
The Next Generation of Security Operations Centre (SOC)
The Next Generation of Security Operations Centre (SOC)The Next Generation of Security Operations Centre (SOC)
The Next Generation of Security Operations Centre (SOC)PECB
 
Dealing with Information Security, Risk Management & Cyber Resilience
Dealing with Information Security, Risk Management & Cyber ResilienceDealing with Information Security, Risk Management & Cyber Resilience
Dealing with Information Security, Risk Management & Cyber ResilienceDonald Tabone
 
Fadi Mutlak - Information security governance
Fadi Mutlak - Information security governanceFadi Mutlak - Information security governance
Fadi Mutlak - Information security governancenooralmousa
 
GSA's Presentation on Improving Cyber Security Through Acquisition
GSA's Presentation on Improving Cyber Security Through AcquisitionGSA's Presentation on Improving Cyber Security Through Acquisition
GSA's Presentation on Improving Cyber Security Through AcquisitionGovernment Technology and Services Coalition
 
Protective Intelligence
Protective IntelligenceProtective Intelligence
Protective Intelligencewbesse
 
Cybertopicsecurity_3
Cybertopicsecurity_3Cybertopicsecurity_3
Cybertopicsecurity_3Anne Starr
 
Security Framework for Digital Risk Managment
Security Framework for Digital Risk ManagmentSecurity Framework for Digital Risk Managment
Security Framework for Digital Risk ManagmentSecurestorm
 
br-security-connected-top-5-trends
br-security-connected-top-5-trendsbr-security-connected-top-5-trends
br-security-connected-top-5-trendsChristopher Bennett
 
Building a Next-Generation Security Operation Center Based on IBM QRadar and ...
Building a Next-Generation Security Operation Center Based on IBM QRadar and ...Building a Next-Generation Security Operation Center Based on IBM QRadar and ...
Building a Next-Generation Security Operation Center Based on IBM QRadar and ...IBM Security
 
New technologies - Amer Haza'a
New technologies - Amer Haza'aNew technologies - Amer Haza'a
New technologies - Amer Haza'aFahmi Albaheth
 
Cybertopic_1security
Cybertopic_1securityCybertopic_1security
Cybertopic_1securityAnne Starr
 
Cybersecurity for Board of Directors - CIO Perspectives Atlanta 2015
Cybersecurity for Board of Directors - CIO Perspectives Atlanta 2015Cybersecurity for Board of Directors - CIO Perspectives Atlanta 2015
Cybersecurity for Board of Directors - CIO Perspectives Atlanta 2015Phil Agcaoili
 
Linked in misti_rs_1.0
Linked in misti_rs_1.0Linked in misti_rs_1.0
Linked in misti_rs_1.0Vincent Toms
 
Identifying Code Risks in Software M&A
Identifying Code Risks in Software M&AIdentifying Code Risks in Software M&A
Identifying Code Risks in Software M&AMatt Tortora
 
Protecting the Crown Jewels – Enlist the Beefeaters
Protecting the Crown Jewels – Enlist the BeefeatersProtecting the Crown Jewels – Enlist the Beefeaters
Protecting the Crown Jewels – Enlist the BeefeatersJack Nichelson
 
Cissp notes
Cissp notesCissp notes
Cissp notesJagbir Singh
 
CSA Atlanta Q1'2016 Chapter Meeting
CSA Atlanta Q1'2016 Chapter MeetingCSA Atlanta Q1'2016 Chapter Meeting
CSA Atlanta Q1'2016 Chapter MeetingPhil Agcaoili
 
Sean McCloskey: How do we Strengthen the Public-Private Partnership to Mitiga...
Sean McCloskey: How do we Strengthen the Public-Private Partnership to Mitiga...Sean McCloskey: How do we Strengthen the Public-Private Partnership to Mitiga...
Sean McCloskey: How do we Strengthen the Public-Private Partnership to Mitiga...Government Technology and Services Coalition
 
The Business Case for Data Security
The Business Case for Data SecurityThe Business Case for Data Security
The Business Case for Data SecurityImperva
 
Cybersecurity Goverence for Boards of Directors
Cybersecurity Goverence for Boards of DirectorsCybersecurity Goverence for Boards of Directors
Cybersecurity Goverence for Boards of DirectorsPaul Feldman
 
Cissp- Security and Risk Management
Cissp- Security and Risk ManagementCissp- Security and Risk Management
Cissp- Security and Risk ManagementHamed Moghaddam
 
Merger & Acquisition integration
Merger & Acquisition integrationMerger & Acquisition integration
Merger & Acquisition integrationYves Zieba
 
Mergers &amp; Acquisitions in High Tech Industry
Mergers &amp; Acquisitions in High Tech IndustryMergers &amp; Acquisitions in High Tech Industry
Mergers &amp; Acquisitions in High Tech IndustryAbhishek Breja
 

Contenu connexe

Tendances

Dealing with Information Security, Risk Management & Cyber Resilience
Dealing with Information Security, Risk Management & Cyber ResilienceDealing with Information Security, Risk Management & Cyber Resilience
Dealing with Information Security, Risk Management & Cyber ResilienceDonald Tabone
 
Fadi Mutlak - Information security governance
Fadi Mutlak - Information security governanceFadi Mutlak - Information security governance
Fadi Mutlak - Information security governancenooralmousa
 
Protective Intelligence
Protective IntelligenceProtective Intelligence
Protective Intelligencewbesse
 
Cybertopicsecurity_3
Cybertopicsecurity_3Cybertopicsecurity_3
Cybertopicsecurity_3Anne Starr
 
Security Framework for Digital Risk Managment
Security Framework for Digital Risk ManagmentSecurity Framework for Digital Risk Managment
Security Framework for Digital Risk ManagmentSecurestorm
 
br-security-connected-top-5-trends
br-security-connected-top-5-trendsbr-security-connected-top-5-trends
br-security-connected-top-5-trendsChristopher Bennett
 
Building a Next-Generation Security Operation Center Based on IBM QRadar and ...
Building a Next-Generation Security Operation Center Based on IBM QRadar and ...Building a Next-Generation Security Operation Center Based on IBM QRadar and ...
Building a Next-Generation Security Operation Center Based on IBM QRadar and ...IBM Security
 
New technologies - Amer Haza'a
New technologies - Amer Haza'aNew technologies - Amer Haza'a
New technologies - Amer Haza'aFahmi Albaheth
 
Cybertopic_1security
Cybertopic_1securityCybertopic_1security
Cybertopic_1securityAnne Starr
 
Cybersecurity for Board of Directors - CIO Perspectives Atlanta 2015
Cybersecurity for Board of Directors - CIO Perspectives Atlanta 2015Cybersecurity for Board of Directors - CIO Perspectives Atlanta 2015
Cybersecurity for Board of Directors - CIO Perspectives Atlanta 2015Phil Agcaoili
 
Linked in misti_rs_1.0
Linked in misti_rs_1.0Linked in misti_rs_1.0
Linked in misti_rs_1.0Vincent Toms
 
Identifying Code Risks in Software M&A
Identifying Code Risks in Software M&AIdentifying Code Risks in Software M&A
Identifying Code Risks in Software M&AMatt Tortora
 
Protecting the Crown Jewels – Enlist the Beefeaters
Protecting the Crown Jewels – Enlist the BeefeatersProtecting the Crown Jewels – Enlist the Beefeaters
Protecting the Crown Jewels – Enlist the BeefeatersJack Nichelson
 
CSA Atlanta Q1'2016 Chapter Meeting
CSA Atlanta Q1'2016 Chapter MeetingCSA Atlanta Q1'2016 Chapter Meeting
CSA Atlanta Q1'2016 Chapter MeetingPhil Agcaoili
 
The Business Case for Data Security
The Business Case for Data SecurityThe Business Case for Data Security
The Business Case for Data SecurityImperva
 
Cybersecurity Goverence for Boards of Directors
Cybersecurity Goverence for Boards of DirectorsCybersecurity Goverence for Boards of Directors
Cybersecurity Goverence for Boards of DirectorsPaul Feldman
 
Cissp- Security and Risk Management
Cissp- Security and Risk ManagementCissp- Security and Risk Management
Cissp- Security and Risk ManagementHamed Moghaddam
 

Tendances (20)

Dealing with Information Security, Risk Management & Cyber Resilience
Dealing with Information Security, Risk Management & Cyber ResilienceDealing with Information Security, Risk Management & Cyber Resilience
Dealing with Information Security, Risk Management & Cyber Resilience
 
Fadi Mutlak - Information security governance
Fadi Mutlak - Information security governanceFadi Mutlak - Information security governance
Fadi Mutlak - Information security governance
 
GSA's Presentation on Improving Cyber Security Through Acquisition
GSA's Presentation on Improving Cyber Security Through AcquisitionGSA's Presentation on Improving Cyber Security Through Acquisition
GSA's Presentation on Improving Cyber Security Through Acquisition
 
Protective Intelligence
Protective IntelligenceProtective Intelligence
Protective Intelligence
 
Cybertopicsecurity_3
Cybertopicsecurity_3Cybertopicsecurity_3
Cybertopicsecurity_3
 
Security Framework for Digital Risk Managment
Security Framework for Digital Risk ManagmentSecurity Framework for Digital Risk Managment
Security Framework for Digital Risk Managment
 
br-security-connected-top-5-trends
br-security-connected-top-5-trendsbr-security-connected-top-5-trends
br-security-connected-top-5-trends
 
Building a Next-Generation Security Operation Center Based on IBM QRadar and ...
Building a Next-Generation Security Operation Center Based on IBM QRadar and ...Building a Next-Generation Security Operation Center Based on IBM QRadar and ...
Building a Next-Generation Security Operation Center Based on IBM QRadar and ...
 
New technologies - Amer Haza'a
New technologies - Amer Haza'aNew technologies - Amer Haza'a
New technologies - Amer Haza'a
 
Cybertopic_1security
Cybertopic_1securityCybertopic_1security
Cybertopic_1security
 
Cybersecurity for Board of Directors - CIO Perspectives Atlanta 2015
Cybersecurity for Board of Directors - CIO Perspectives Atlanta 2015Cybersecurity for Board of Directors - CIO Perspectives Atlanta 2015
Cybersecurity for Board of Directors - CIO Perspectives Atlanta 2015
 
Linked in misti_rs_1.0
Linked in misti_rs_1.0Linked in misti_rs_1.0
Linked in misti_rs_1.0
 
Identifying Code Risks in Software M&A
Identifying Code Risks in Software M&AIdentifying Code Risks in Software M&A
Identifying Code Risks in Software M&A
 
Protecting the Crown Jewels – Enlist the Beefeaters
Protecting the Crown Jewels – Enlist the BeefeatersProtecting the Crown Jewels – Enlist the Beefeaters
Protecting the Crown Jewels – Enlist the Beefeaters
 
Cissp notes
Cissp notesCissp notes
Cissp notes
 
CSA Atlanta Q1'2016 Chapter Meeting
CSA Atlanta Q1'2016 Chapter MeetingCSA Atlanta Q1'2016 Chapter Meeting
CSA Atlanta Q1'2016 Chapter Meeting
 
Sean McCloskey: How do we Strengthen the Public-Private Partnership to Mitiga...
Sean McCloskey: How do we Strengthen the Public-Private Partnership to Mitiga...Sean McCloskey: How do we Strengthen the Public-Private Partnership to Mitiga...
Sean McCloskey: How do we Strengthen the Public-Private Partnership to Mitiga...
 
The Business Case for Data Security
The Business Case for Data SecurityThe Business Case for Data Security
The Business Case for Data Security
 
Cybersecurity Goverence for Boards of Directors
Cybersecurity Goverence for Boards of DirectorsCybersecurity Goverence for Boards of Directors
Cybersecurity Goverence for Boards of Directors
 
Cissp- Security and Risk Management
Cissp- Security and Risk ManagementCissp- Security and Risk Management
Cissp- Security and Risk Management
 

En vedette

Merger & Acquisition integration
Merger & Acquisition integrationMerger & Acquisition integration
Merger & Acquisition integrationYves Zieba
 
Mergers &amp; Acquisitions in High Tech Industry
Mergers &amp; Acquisitions in High Tech IndustryMergers &amp; Acquisitions in High Tech Industry
Mergers &amp; Acquisitions in High Tech IndustryAbhishek Breja
 
Improving cyber-security through acquisition
Improving cyber-security through acquisitionImproving cyber-security through acquisition
Improving cyber-security through acquisitionChristopher Dorobek
 
M&A Framework for Success - short
M&A Framework for Success - shortM&A Framework for Success - short
M&A Framework for Success - shortSteve Coote
 
Post-acquisition integration (cross-border case)
Post-acquisition integration (cross-border case)Post-acquisition integration (cross-border case)
Post-acquisition integration (cross-border case)Virgilijus Dadonas
 
Due Diligence for Merger & Acquisition, Corporate Restructuring and Takeover
Due Diligence for Merger & Acquisition, Corporate Restructuring and TakeoverDue Diligence for Merger & Acquisition, Corporate Restructuring and Takeover
Due Diligence for Merger & Acquisition, Corporate Restructuring and TakeoverPavan Kumar Vijay
 
Due Diligence Best Practices and Pitfalls
Due Diligence Best Practices and PitfallsDue Diligence Best Practices and Pitfalls
Due Diligence Best Practices and PitfallsFirmex
 
Creating A Due Diligence Framework
Creating A Due Diligence Framework Creating A Due Diligence Framework
Creating A Due Diligence Framework Now Dentons
 
P&G’s Acquisition of Gillette
P&G’s Acquisition of GilletteP&G’s Acquisition of Gillette
P&G’s Acquisition of GilletteSanjaya Sanjaya
 

En vedette (9)

Merger & Acquisition integration
Merger & Acquisition integrationMerger & Acquisition integration
Merger & Acquisition integration
 
Mergers &amp; Acquisitions in High Tech Industry
Mergers &amp; Acquisitions in High Tech IndustryMergers &amp; Acquisitions in High Tech Industry
Mergers &amp; Acquisitions in High Tech Industry
 
Improving cyber-security through acquisition
Improving cyber-security through acquisitionImproving cyber-security through acquisition
Improving cyber-security through acquisition
 
M&A Framework for Success - short
M&A Framework for Success - shortM&A Framework for Success - short
M&A Framework for Success - short
 
Post-acquisition integration (cross-border case)
Post-acquisition integration (cross-border case)Post-acquisition integration (cross-border case)
Post-acquisition integration (cross-border case)
 
Due Diligence for Merger & Acquisition, Corporate Restructuring and Takeover
Due Diligence for Merger & Acquisition, Corporate Restructuring and TakeoverDue Diligence for Merger & Acquisition, Corporate Restructuring and Takeover
Due Diligence for Merger & Acquisition, Corporate Restructuring and Takeover
 
Due Diligence Best Practices and Pitfalls
Due Diligence Best Practices and PitfallsDue Diligence Best Practices and Pitfalls
Due Diligence Best Practices and Pitfalls
 
Creating A Due Diligence Framework
Creating A Due Diligence Framework Creating A Due Diligence Framework
Creating A Due Diligence Framework
 
P&G’s Acquisition of Gillette
P&G’s Acquisition of GilletteP&G’s Acquisition of Gillette
P&G’s Acquisition of Gillette
 

Similaire à Mergers & Acquisitions security - (ISC)2 Secure Summit DACH

2013 12 18 webcast - building the privileged identity management business case
2013 12 18 webcast - building the privileged identity management business case2013 12 18 webcast - building the privileged identity management business case
2013 12 18 webcast - building the privileged identity management business casepmcbrideva1
 
Security metrics 2
Security metrics 2Security metrics 2
Security metrics 2Manish Kumar
 
Charting Your Path to Enterprise Key Management
Charting Your Path to Enterprise Key ManagementCharting Your Path to Enterprise Key Management
Charting Your Path to Enterprise Key ManagementSafeNet
 
ComResource Business Solutions
ComResource Business SolutionsComResource Business Solutions
ComResource Business SolutionsAnthony Dials
 
f6_cyber_security_and_your_agency.pdf
f6_cyber_security_and_your_agency.pdff6_cyber_security_and_your_agency.pdf
f6_cyber_security_and_your_agency.pdfSurendhar57
 
Extending security in the cloud network box - v4
Extending security in the cloud network box - v4Extending security in the cloud network box - v4
Extending security in the cloud network box - v4Valencell, Inc.
 
Chapter_5_Security_CC.pptx
Chapter_5_Security_CC.pptxChapter_5_Security_CC.pptx
Chapter_5_Security_CC.pptxLokNathRegmi1
 
ComResource Agency Solutions
ComResource Agency SolutionsComResource Agency Solutions
ComResource Agency SolutionsAnthony Dials
 
BATbern48_How Zero Trust can help your organisation keep safe.pdf
BATbern48_How Zero Trust can help your organisation keep safe.pdfBATbern48_How Zero Trust can help your organisation keep safe.pdf
BATbern48_How Zero Trust can help your organisation keep safe.pdfBATbern
 
Securing your digital world - Cybersecurity for SBEs
Securing your digital world - Cybersecurity for SBEsSecuring your digital world - Cybersecurity for SBEs
Securing your digital world - Cybersecurity for SBEsSonny Hashmi
 
Securing your digital world cybersecurity for sb es
Securing your digital world cybersecurity for sb esSecuring your digital world cybersecurity for sb es
Securing your digital world cybersecurity for sb esSonny Hashmi
 
The Datacenter Security Continuum
The Datacenter Security ContinuumThe Datacenter Security Continuum
The Datacenter Security ContinuumMartin Hingley
 
Beware the Firewall My Son: The Workshop
Beware the Firewall My Son: The WorkshopBeware the Firewall My Son: The Workshop
Beware the Firewall My Son: The WorkshopMichele Chubirka
 
nist_small_business_fundamentals_july_2019.pptx
nist_small_business_fundamentals_july_2019.pptxnist_small_business_fundamentals_july_2019.pptx
nist_small_business_fundamentals_july_2019.pptxJkYt1
 
Why IAM is the Need of the Hour
Why IAM is the Need of the HourWhy IAM is the Need of the Hour
Why IAM is the Need of the HourTechdemocracy
 
Information protection and compliance
Information protection and complianceInformation protection and compliance
Information protection and complianceDean Iacovelli
 
Matrix Vision Deck
Matrix Vision DeckMatrix Vision Deck
Matrix Vision DeckAbu Turay
 

Similaire à Mergers & Acquisitions security - (ISC)2 Secure Summit DACH (20)

Securing your Cloud Deployment
Securing your Cloud DeploymentSecuring your Cloud Deployment
Securing your Cloud Deployment
 
2013 12 18 webcast - building the privileged identity management business case
2013 12 18 webcast - building the privileged identity management business case2013 12 18 webcast - building the privileged identity management business case
2013 12 18 webcast - building the privileged identity management business case
 
Security metrics 2
Security metrics 2Security metrics 2
Security metrics 2
 
Charting Your Path to Enterprise Key Management
Charting Your Path to Enterprise Key ManagementCharting Your Path to Enterprise Key Management
Charting Your Path to Enterprise Key Management
 
ComResource Business Solutions
ComResource Business SolutionsComResource Business Solutions
ComResource Business Solutions
 
f6_cyber_security_and_your_agency.pdf
f6_cyber_security_and_your_agency.pdff6_cyber_security_and_your_agency.pdf
f6_cyber_security_and_your_agency.pdf
 
Extending security in the cloud network box - v4
Extending security in the cloud network box - v4Extending security in the cloud network box - v4
Extending security in the cloud network box - v4
 
Chapter_5_Security_CC.pptx
Chapter_5_Security_CC.pptxChapter_5_Security_CC.pptx
Chapter_5_Security_CC.pptx
 
ComResource Agency Solutions
ComResource Agency SolutionsComResource Agency Solutions
ComResource Agency Solutions
 
BATbern48_How Zero Trust can help your organisation keep safe.pdf
BATbern48_How Zero Trust can help your organisation keep safe.pdfBATbern48_How Zero Trust can help your organisation keep safe.pdf
BATbern48_How Zero Trust can help your organisation keep safe.pdf
 
AWS Cloud Security
AWS Cloud SecurityAWS Cloud Security
AWS Cloud Security
 
Securing your digital world - Cybersecurity for SBEs
Securing your digital world - Cybersecurity for SBEsSecuring your digital world - Cybersecurity for SBEs
Securing your digital world - Cybersecurity for SBEs
 
Securing your digital world cybersecurity for sb es
Securing your digital world cybersecurity for sb esSecuring your digital world cybersecurity for sb es
Securing your digital world cybersecurity for sb es
 
The Datacenter Security Continuum
The Datacenter Security ContinuumThe Datacenter Security Continuum
The Datacenter Security Continuum
 
Beware the Firewall My Son: The Workshop
Beware the Firewall My Son: The WorkshopBeware the Firewall My Son: The Workshop
Beware the Firewall My Son: The Workshop
 
nist_small_business_fundamentals_july_2019.pptx
nist_small_business_fundamentals_july_2019.pptxnist_small_business_fundamentals_july_2019.pptx
nist_small_business_fundamentals_july_2019.pptx
 
Why IAM is the Need of the Hour
Why IAM is the Need of the HourWhy IAM is the Need of the Hour
Why IAM is the Need of the Hour
 
Information protection and compliance
Information protection and complianceInformation protection and compliance
Information protection and compliance
 
Zero Trust and Data Security
Zero Trust and Data SecurityZero Trust and Data Security
Zero Trust and Data Security
 
Matrix Vision Deck
Matrix Vision DeckMatrix Vision Deck
Matrix Vision Deck
 

Plus de EQS Group

Blockchain: everyone wants to sell me that - but is that really right for my ...
Blockchain: everyone wants to sell me that - but is that really right for my ...Blockchain: everyone wants to sell me that - but is that really right for my ...
Blockchain: everyone wants to sell me that - but is that really right for my ...EQS Group
 
Impact of GDPR on Third Party and M&A Security
Impact of GDPR on Third Party and M&A SecurityImpact of GDPR on Third Party and M&A Security
Impact of GDPR on Third Party and M&A SecurityEQS Group
 
Architecting Security across global networks
Architecting Security across global networksArchitecting Security across global networks
Architecting Security across global networksEQS Group
 
313 – Security Challenges in Healthcare IoT - ME
313 – Security Challenges in Healthcare IoT - ME313 – Security Challenges in Healthcare IoT - ME
313 – Security Challenges in Healthcare IoT - MEEQS Group
 
Achieving PCI-DSS compliance with network security implementations - April 2011
Achieving PCI-DSS compliance with network security implementations - April 2011Achieving PCI-DSS compliance with network security implementations - April 2011
Achieving PCI-DSS compliance with network security implementations - April 2011EQS Group
 
Top risks in using NIPS - Brighttalk - July 2010
Top risks in using NIPS - Brighttalk - July 2010Top risks in using NIPS - Brighttalk - July 2010
Top risks in using NIPS - Brighttalk - July 2010EQS Group
 
Best practices in NIPS - IDC Sofia - March 2010
Best practices in NIPS - IDC Sofia - March 2010Best practices in NIPS - IDC Sofia - March 2010
Best practices in NIPS - IDC Sofia - March 2010EQS Group
 
Best practices in NIPS - Brighttalk - January 2010
Best practices in NIPS - Brighttalk - January 2010Best practices in NIPS - Brighttalk - January 2010
Best practices in NIPS - Brighttalk - January 2010EQS Group
 

Plus de EQS Group (8)

Blockchain: everyone wants to sell me that - but is that really right for my ...
Blockchain: everyone wants to sell me that - but is that really right for my ...Blockchain: everyone wants to sell me that - but is that really right for my ...
Blockchain: everyone wants to sell me that - but is that really right for my ...
 
Impact of GDPR on Third Party and M&A Security
Impact of GDPR on Third Party and M&A SecurityImpact of GDPR on Third Party and M&A Security
Impact of GDPR on Third Party and M&A Security
 
Architecting Security across global networks
Architecting Security across global networksArchitecting Security across global networks
Architecting Security across global networks
 
313 – Security Challenges in Healthcare IoT - ME
313 – Security Challenges in Healthcare IoT - ME313 – Security Challenges in Healthcare IoT - ME
313 – Security Challenges in Healthcare IoT - ME
 
Achieving PCI-DSS compliance with network security implementations - April 2011
Achieving PCI-DSS compliance with network security implementations - April 2011Achieving PCI-DSS compliance with network security implementations - April 2011
Achieving PCI-DSS compliance with network security implementations - April 2011
 
Top risks in using NIPS - Brighttalk - July 2010
Top risks in using NIPS - Brighttalk - July 2010Top risks in using NIPS - Brighttalk - July 2010
Top risks in using NIPS - Brighttalk - July 2010
 
Best practices in NIPS - IDC Sofia - March 2010
Best practices in NIPS - IDC Sofia - March 2010Best practices in NIPS - IDC Sofia - March 2010
Best practices in NIPS - IDC Sofia - March 2010
 
Best practices in NIPS - Brighttalk - January 2010
Best practices in NIPS - Brighttalk - January 2010Best practices in NIPS - Brighttalk - January 2010
Best practices in NIPS - Brighttalk - January 2010
 

Dernier

W.H.Bender Quote 62 - Always strive to be a Hospitality Service professional
W.H.Bender Quote 62 - Always strive to be a Hospitality Service professionalW.H.Bender Quote 62 - Always strive to be a Hospitality Service professional
W.H.Bender Quote 62 - Always strive to be a Hospitality Service professionalWilliam (Bill) H. Bender, FCSI
 
International Ocean Transportation p.pdf
International Ocean Transportation p.pdfInternational Ocean Transportation p.pdf
International Ocean Transportation p.pdfAlejandromexEspino
 
Reviewing and summarization of university ranking system to.pptx
Reviewing and summarization of university ranking system to.pptxReviewing and summarization of university ranking system to.pptx
Reviewing and summarization of university ranking system to.pptxAss.Prof. Dr. Mogeeb Mosleh
 
Agile Coaching Change Management Framework.pptx
Agile Coaching Change Management Framework.pptxAgile Coaching Change Management Framework.pptx
Agile Coaching Change Management Framework.pptxalinstan901
 
digital Human resource management presentation.pdf
digital Human resource management presentation.pdfdigital Human resource management presentation.pdf
digital Human resource management presentation.pdfArtiSrivastava23
 
How Software Developers Destroy Business Value.pptx
How Software Developers Destroy Business Value.pptxHow Software Developers Destroy Business Value.pptx
How Software Developers Destroy Business Value.pptxAaron Stannard
 
Leaders enhance communication by actively listening, providing constructive f...
Leaders enhance communication by actively listening, providing constructive f...Leaders enhance communication by actively listening, providing constructive f...
Leaders enhance communication by actively listening, providing constructive f...Ram V Chary
 
Safety T fire missions army field Artillery
Safety T fire missions army field ArtillerySafety T fire missions army field Artillery
Safety T fire missions army field ArtilleryKennethSwanberg
 
The Psychology Of Motivation - Richard Brown
The Psychology Of Motivation - Richard BrownThe Psychology Of Motivation - Richard Brown
The Psychology Of Motivation - Richard BrownSandaliGurusinghe2
 
internship thesis pakistan aeronautical complex kamra
internship thesis pakistan aeronautical complex kamrainternship thesis pakistan aeronautical complex kamra
internship thesis pakistan aeronautical complex kamraAllTops
 
Independent Escorts Vikaspuri / 9899900591 High Profile Escort Service in Delhi
Independent Escorts Vikaspuri / 9899900591 High Profile Escort Service in DelhiIndependent Escorts Vikaspuri / 9899900591 High Profile Escort Service in Delhi
Independent Escorts Vikaspuri / 9899900591 High Profile Escort Service in Delhiguptaswati8536
 
Marketing Management 16th edition by Philip Kotler test bank.docx
Marketing Management 16th edition by Philip Kotler test bank.docxMarketing Management 16th edition by Philip Kotler test bank.docx
Marketing Management 16th edition by Philip Kotler test bank.docxssuserf63bd7
 
Dealing with Poor Performance - get the full picture from 3C Performance Mana...
Dealing with Poor Performance - get the full picture from 3C Performance Mana...Dealing with Poor Performance - get the full picture from 3C Performance Mana...
Dealing with Poor Performance - get the full picture from 3C Performance Mana...Hedda Bird
 
Strategic Management, Vision Mission, Internal Analsysis
Strategic Management, Vision Mission, Internal AnalsysisStrategic Management, Vision Mission, Internal Analsysis
Strategic Management, Vision Mission, Internal Analsysistanmayarora45
 
Beyond the Codes_Repositioning towards sustainable development
Beyond the Codes_Repositioning towards sustainable developmentBeyond the Codes_Repositioning towards sustainable development
Beyond the Codes_Repositioning towards sustainable developmentNimot Muili
 

Dernier (17)

W.H.Bender Quote 62 - Always strive to be a Hospitality Service professional
W.H.Bender Quote 62 - Always strive to be a Hospitality Service professionalW.H.Bender Quote 62 - Always strive to be a Hospitality Service professional
W.H.Bender Quote 62 - Always strive to be a Hospitality Service professional
 
International Ocean Transportation p.pdf
International Ocean Transportation p.pdfInternational Ocean Transportation p.pdf
International Ocean Transportation p.pdf
 
Reviewing and summarization of university ranking system to.pptx
Reviewing and summarization of university ranking system to.pptxReviewing and summarization of university ranking system to.pptx
Reviewing and summarization of university ranking system to.pptx
 
Agile Coaching Change Management Framework.pptx
Agile Coaching Change Management Framework.pptxAgile Coaching Change Management Framework.pptx
Agile Coaching Change Management Framework.pptx
 
digital Human resource management presentation.pdf
digital Human resource management presentation.pdfdigital Human resource management presentation.pdf
digital Human resource management presentation.pdf
 
How Software Developers Destroy Business Value.pptx
How Software Developers Destroy Business Value.pptxHow Software Developers Destroy Business Value.pptx
How Software Developers Destroy Business Value.pptx
 
Leaders enhance communication by actively listening, providing constructive f...
Leaders enhance communication by actively listening, providing constructive f...Leaders enhance communication by actively listening, providing constructive f...
Leaders enhance communication by actively listening, providing constructive f...
 
Safety T fire missions army field Artillery
Safety T fire missions army field ArtillerySafety T fire missions army field Artillery
Safety T fire missions army field Artillery
 
The Psychology Of Motivation - Richard Brown
The Psychology Of Motivation - Richard BrownThe Psychology Of Motivation - Richard Brown
The Psychology Of Motivation - Richard Brown
 
Intro_University_Ranking_Introduction.pptx
Intro_University_Ranking_Introduction.pptxIntro_University_Ranking_Introduction.pptx
Intro_University_Ranking_Introduction.pptx
 
Abortion pills in Jeddah |• +966572737505 ] GET CYTOTEC
Abortion pills in Jeddah |• +966572737505 ] GET CYTOTECAbortion pills in Jeddah |• +966572737505 ] GET CYTOTEC
Abortion pills in Jeddah |• +966572737505 ] GET CYTOTEC
 
internship thesis pakistan aeronautical complex kamra
internship thesis pakistan aeronautical complex kamrainternship thesis pakistan aeronautical complex kamra
internship thesis pakistan aeronautical complex kamra
 
Independent Escorts Vikaspuri / 9899900591 High Profile Escort Service in Delhi
Independent Escorts Vikaspuri / 9899900591 High Profile Escort Service in DelhiIndependent Escorts Vikaspuri / 9899900591 High Profile Escort Service in Delhi
Independent Escorts Vikaspuri / 9899900591 High Profile Escort Service in Delhi
 
Marketing Management 16th edition by Philip Kotler test bank.docx
Marketing Management 16th edition by Philip Kotler test bank.docxMarketing Management 16th edition by Philip Kotler test bank.docx
Marketing Management 16th edition by Philip Kotler test bank.docx
 
Dealing with Poor Performance - get the full picture from 3C Performance Mana...
Dealing with Poor Performance - get the full picture from 3C Performance Mana...Dealing with Poor Performance - get the full picture from 3C Performance Mana...
Dealing with Poor Performance - get the full picture from 3C Performance Mana...
 
Strategic Management, Vision Mission, Internal Analsysis
Strategic Management, Vision Mission, Internal AnalsysisStrategic Management, Vision Mission, Internal Analsysis
Strategic Management, Vision Mission, Internal Analsysis
 
Beyond the Codes_Repositioning towards sustainable development
Beyond the Codes_Repositioning towards sustainable developmentBeyond the Codes_Repositioning towards sustainable development
Beyond the Codes_Repositioning towards sustainable development
 

Mergers & Acquisitions security - (ISC)2 Secure Summit DACH

  • 1.
  • 2. Security in M&A: The Forgotten Son of Information Security Marco Ermini, 2017
  • 3. Agenda » Why M&A need Cyber Security support? » Aren’t they just ordinary business transactions? » They seem to occur nearly every day, so what is so special about them that they require special security support, or any security support at all? » What value does a security professional bring to the team?
  • 4. The Academic Minute… » Black’s Law Dictionary defines mergers and acquisitions as the following: • Merger: The union of two or more corporations by the transfer of property of all, to one of them, which continues in existence, the others being swallowed up or merged therein… • Acquisition: The act of becoming the owner of a certain property… • Divestiture: to deprive; to take away; to withdraw
  • 5. The Academic Minute… » Acquisition of Total Assets • Liquidate • Break up and sell • Integrate » Acquisition » Merger » Divestiture
  • 6. The Academic Minute… » It is all about… 1. Costs Control, 2. Market Share, 3. Regulatory Landscape 4. Others…
  • 7. Business Drivers » Confidentiality » Speed » Business as usual • Zero Impact » Informed Business Decision on Risk
  • 8. Why M&A Fail? » The acquiring company does not properly assess the value of the target company » Inability of the acquiring company to successfully integrate the target company that leads to a failed acquisition “It is well known in the M&A community that most acquisitions fail to create shareholder value, that is, they end up as a negative sum after paying acquisition premium and banker fees, impossible to get synergies to make up loss. The acquisitions that do create value are either a version of corporate venture capital (large company scooping tiny team), or mid-cap industrials buying a supplier. Few and far between…“
  • 11. The Four Cs » Capture » Connect » Combine » Consolidate
  • 13. Scoping the Threats » Special Interest Groups – gain from the Operation • Financial Criminals • Competitors • Acquisition / Merger Company • Disgruntled Employees » General Interest Groups – gain from Impact • Script Kiddies / Hackers • Hacktivists / Terrorists • Spies
  • 14. Scoping the Risks » Publicity, raising profile — your interest gets attacker’s interest! » Impact on: • Resources • Technologies • Infrastructure » Disgruntled Employees » Change in threat and risk model » Absorbing unknown / Confusion » Creating new attack vectors and window of opportunity » Business drivers can force this the Security Manager very quickly » Are we all really equipped for change?
  • 16. The Role of a Security Manager » Protecting the effort itself • Confidentiality of the total effort • Confidentiality of the team’s work » Evaluating the security condition of the target company • Impact on the deal’s value • Asking the right questions » Providing subject matter expertise • Identify Security Requirements for the New Company • Controlling Rumors • Managing Global/International Aspects • “Team Consultant” • Low Hanging Fruits
  • 17. Importance of Confidentiality » Premature Disclosure of Intent • Loss of key employees • Bidding wars • SEC Liability • Loss of Initiative • Loss of Goodwill - Target Company - 3rd Parties relationships - Customer relationships
  • 18. Protecting the operation » Unintended Release » Unauthorized Release » Protection from competitive intelligence efforts » Documents Control
  • 19. The Security Manager in action » Preliminary background investigations • Collection of Open-Source information » Due diligence • More in-depth look • Estimation of Costs of Cyber Security » Operations security • Protect operational activities • Develop and implement protective measures • Appropriate for each phase of the acquisition
  • 21. How can I verify an M&A Target candidate? » You cannot explicitly test your acquisition’s candidate » You cannot simply ask them for their vulnerability assessments’ results » Not all companies have a structured and mature security program » You cannot silently test them either
  • 22. External Sources » Professional Associations » Service Providers » Public (Open) Sources » Job Applications/Job Postings
  • 23. How that does look for real…
  • 25. Download the Kit Toolkit: https://github.com/markoer73/M-A
  • 26. “Capture” of Security Controls » 13 Domains to verify 1. Digital Identities 2. Admin Accounts 3. Endpoints/Client Systems 4. Servers 5. Networks 6. Hosting 7. Email 8. Data Recovery 9. Boundary Defenses 10. Assets Inventory 11. Operational Security 12. Physical Security 13. Wireless Networks
  • 27. Example of Policy Requirement Domain Verification How-to Objectives Minimum Acceptable Level Digital Identities Verify status of identities in main identity store (use of unique IDs, generic accounts, password policy, Groups’ usage, GPOs, Federations, etc.). Verify if anything is outside of the main identity store (e.g. VPN accounts, Cloud accounts, supplier accounts, etc.).  Interview with IT admins from Target.  Snapshot of information from AD/LDAP.  Interview with business units which manage other tools (Cloud etc.), to understand how this is managed  Ensure appropriate controls are in place to protect Target environment and data  Get an idea of the complexity of the DI structure of the Target.  Understand usage of Cloud applications and identities.  Understand how restriction of access to information happens in Target.  There is a Directory Service  Unique IDs are used  Permissions are assigned via Groups in the Directory Service  Service and Cloud accounts are gathered, minimized, and under control  Sensitive files are shared in a secure way Admin Accounts Verify status of admin account management in main identity store, if managed there. Verify if anything is outside of the main identity store (e.g. VPN accounts, Cloud accounts, supplier accounts, etc.)  Interview with IT admins from Target.  Snapshot of information from AD/LDAP and other tools.  Ensure admin account controls are defined, implemented and reviewed to protect systems and data  Understand how IT administrative actions are performed, what the procedures and practices are, and who has the ownership and responsibility.  Admin accounts are managed under a Directory Service  Admin accounts are unique for each admin  Central ownership of who gets appropriate rights  Process for removing rights as appropriate
  • 28. Example of Interview Questions Domain Minimum Acceptable Level Key Topics for Discussion Digital Identities  Directory Services of any kind are used  Unique IDs are used  Permissions are assigned via Groups in the Directory Service  There is an adequate password policy in place  Service and Cloud accounts are gathered, minimized, and under control  Sensitive files are shared in a secure way  How many people are present in the company? Get overview of employees’ org chart/roles, and how many people are in IT and Security.  How old is the company? Get brief history, acquisitions, etc.  Which DS is used? (AD, which version?)  Get overview of Groups, GPOs, shared accounts, shared mailboxes, federated services, password policy (for AD, request screenshots).  Is every system and device connected to DS and follow password policy, or there are systems which have their own passwords (e.g. Wi-Fi, network devices, etc.)?  What is the process by which Group ownership, permissions and accesses to systems and applications are granted?  Get overview of Cloud services used and how accounts are managed, if SSO is used and how, especially concerning files and documents sharing with third parties.  Is Cloud Sharing such as Box, Dropbox etc. being used? Admin Accounts  Admin accounts are managed under a Directory Service  Admin accounts are unique for each admin  Central ownership of who gets appropriate rights  Process for removing rights as appropriate  Get overview of how administration is performed, if AD Groups and GPOs are used, if shared accounts and/or shared mailboxes are used for admin accounts  Understand how permissions are granted and removed from users as their work and function changes in the company
  • 29. Risk Assessment » Management Summary with a clear status » Clearly indicate the area that will need additional attention » Especially indicate where the additional costs will incur (e.g. new wireless equipment, re- imaging of the endpoints, reimplementation of firewall, etc.)
  • 30. Impact Assessment » Indicate the kind of impact: • Security • Processes • Costs » Indicate expected remediation, aligned with IT » If not possible to estimate costs immediately, indicate how they should be calculated (e.g. need to provision new firewall cluster)
  • 31. Summarize Findings aligned with IT – in one Slide
  • 32. Costs aligned with IT for integration
  • 34. Starting to work in Clear Sight » The news is out » Information Completeness is paramount » An Integration Plan is proposed • Technical Integration - Networks, PCs, applications, data centers, hosting… • Business Processes and Systems • Timing » The Integration Plan must also negotiate from an “as- is” to a “to-be” state for the Target
  • 36. Target Characteristics Security Guidelines SLAs SMALL ➤ Small employee base (< 200 employees) ➤ Low complexity ➤ Private ownership ➤ Little to no geographical diversity ➤ No separate legal entities ➤ No/limited need to keep the same facilities ➤ No/limited to keep the existing technologies ➤ Purchased for limited product portfolio, technology, talent, or local presence ➤ Baseline security controls Target is fully absorbed into IT infrastructure ➤ All IT labor is absorbed into IT global business units ➤ Security controls established or confirmed in less than 100 days MEDIUM ➤ Similar to previous kind, but Target has certain identifiable complexities that require specific sensitivity during integration ➤ Fewer than 500 employees ➤ Needs to be stand-alone for a certain period of time ➤ During stand-alone time, Target maintains defined non-compliances ➤ Supports its own IT infrastructure during the stand-alone phase ➤ Integration of Target may be full, hybrid, or standalone ➤ All IT labor is absorbed into IT global business units ➤ Operation integration of some IT infrastructure may take +180 days ➤ Processes may take 3 to 9 months LARGE ➤ More than 500 employees ➤ Relatively large operations ➤ Significant multinational presence and subsidiaries ➤ Target contains certain identifiable complexities that require specific sensitivity during integration ➤ Integration of Target may be full, hybrid, or standalone ➤ IT labor can stay funded by Target company ➤ Operation integration of some IT infrastructure may take +180 days ➤ Customized integration plan ➤ IT Support is shared ➤ Processes take more than 12 months
  • 37. Combining the two companies » Resources, staffing, processes, and systems are combined » Business processes are as much as possible leveled » IT tools are unified » Active Directory merging strategy is key! » The Target company has comparable / same security » Exceptions are documented and signed off by leadership (executives, CISO) » Agreed-upon designs are implemented » Operations — including InfoSec – are turned to standard support » Weekly or recurring meetings can be setup to assess progresses
  • 38. Planning the Active Directory Integration » Training for the technicians performing the migration » Scheduled outages » Companies’ cultural differences such as who's allowed access to AD and Exchange, or how file system security is set » Network differences between the two sites » Network, AD, or Exchange anomalies » Customer and employee communication
  • 39. Pain Points in Active Directory Integration » Deciding the strategy • Integrate the Target into the Acquiring • Build a new, combined AD • Migrate legacy objects into a new AD » One Company, One Email! • Free/Busy Information • Exchange/Lync/Office/AD versions • Office 365? » External Federations/Partners/ADFS? » DNS configuration/forwarding » SID history/filtering » Evaluate purchase of a dedicated AD migration/upgrade tool
  • 41. Merging Policies » Safeguards against disgruntled employees » New employee contracts • Are existing Policies still relevant? • Are we “dumbing down” their security? » Existing employee contracts • Do they protect you? • Do they meet new relationship? » Identify key policies — yours vs theirs • Work with Legal Departments
  • 43. The New Security Department » Cost/Budgeting • Pre-merger: OpEx • Merger: CapEx, Processes • Post-merger: Optimization » Communications
  • 44. What if I am on the weak side? 1. Identify specific strengths that can be useful in the merging • Experience from security incidents • Technological implementations • Local knowledge and compliance 2. Be prepared to learn • What is the current Cyber Security philosophy? • Who is taking security-related decisions? 3. Don’t rush your career decisions • Can bring new opportunities • Meet the new management
  • 48. Moving to a Cloud-Based ERP or Email Solution » Traditional M&A dogma is “transition, then transform” » Companies however are leveraging migration to key technologies to the Cloud during the M&A process as an enabler » Can simultaneously replace aging, capital-intensive technology with a subscription-based operating model » Ideal also for divestitures » Boarding is considerably faster and cheaper than traditional on premise solutions (Accenture estimates 30% for both) » Ultimate flexibility during a post-deal transition
  • 51. Open Source Intelligence » Collection of free tools and source of information » They divide into • Tools which can run locally • Search Engine “dorking” (e.g. Google hacking) • Semi-closed sources • Exploitation of sites which have originally other purposes (e.g. social networks, dating sites…) 51
  • 70. censys.io (semi-free) » Parsing and collection of various publically-available information » Example: certificates • SSLVPN in France and Munich • Date Center presence in Munich, San Diego, Sydney • Demo-site of Hybrid (e-commerce technology) • Using Akamai services in Sydney 70
  • 88. Bibliography » “Mergers and Acquisitions Security – Corporate Restructuring and Security Management” (E.P. Halibozek, Dr. G.L. Kovacich), Elsevier, 2005 » “Information Security in Mergers & Acquisitions” (C. Conacher), Black Hat 2004 » “Handling mergers and acquisitions: Career success tips for infosec pros”, searchsecurity.techtarget.com » “Using Open Source Reconnaissance Tools for Business Partner Vulnerability Assessment” (SANS Institute InfoSec Reading Room), 2014 » “Why people integration continues to dominate M&A challenges”, PWC, 2012 » “Plan and Execute an Active Directory Merger”, windowsitpro.com, 2009 » “The Three Steps to Consolidate the Active Directory Environments of Merging Organizations”, binarytree.com, 2015 » “Collaborations, mergers, acquisitions, and security policy conflict analysis” (V. Subramanian, R. Seker, J. Bian, N. Kanaskar, acm.org, 2011 » “Alignment of the IS Organization: the Special Case of Corporate Acquisitions” (C.V. Brown, J.S. Renwick), 1996 » “M&A loves the cloud”, “M&A Trends”, Deloitte, 2016 » “Driving growth and competitiveness: Can the power of cloud lift M&A value into the stratosphere?”, Accenture, 2016 » “Lifecycle of a Technology Company – Step-by-step legal background and practical guide from start-up to sale”, E.L. Miller Jr., John Wiley & Sons, 2008 » “Mergers and Acquisitions from A to Z” 3rd ed., A.J. Sherman, AMACOM, 2011 » “Digging for Disclosure – Tactics for Protecting Your Firm’s Assets from Swindlers, Scammers, and Imposters”, K.S. Springer and J. Scott, Pearson Education, 2011 » “Mergers & Acquisitions For Dummies Cheat Sheet” – dummies.com » “The Complete Guide to Mergers & Acquisitions: Process Tools to Support M & A Integration at Every Level, Third Edition”, T.J. Galpin, Wiley, 2014 88