Technology, Cybersecurity, and Privacy Risk Assurance and Advisory

Transaction advisory and portfolio company risk management

We provide pre-deal, post-deal, and ongoing monitoring to help investors manage the cyber risks of their portfolio companies, negotiate better deals, and preserve their investment value.

Our expertise

Cybersecurity

Through the lift of the investment, we help clients assess, monitor, and uplift the cybersecurity programs of their private equity sponsor clients. This allows cybersecurity to continue to be an asset to the investment team, as opposed to a liability.

Technology Risk

Through a focus on business continuity and business impact, our team helps investment and operating professionals ascertain key risk to business interruption and help the portfolio companies prioritize resiliency as part of their core technology roadmap.

Privacy

As jurisdictions globally continue to focus on the rights of individuals pertaining to personal data, we can help investment and operating professionals execute privacy by design at their portfolio companies as part of their operational improvement roadmap.

1 of
abstract black and white looking up at bridge rails

Pre-Deal Due Diligence

Technology, cyber, and privacy risk can make a huge difference in the successful execution of an investment thesis. With our industry leading due diligence efforts, we will evaluate the investment targets, technology readiness to execute on a business plan, the quality and efficacy of the cybersecurity program, and the execution and maintenance of privacy compliance in line with your obligations. The report will include detailed information pertinent to the investment thesis with an investment professional quality summarization.

black and white looking up at side of building

Transition Management

Once we have completed diligence on a target, there will be time sensitive initiatives to be completed within the first 100 days. We will assist with the roadmapping, prioritization, and execution of their key deliverables.

abstract black and white architectural lines and shadows

Portfolio Oversight

Through our PortCo Defend offering we are able to provide an inherent risk weighted minimum standard for portfolio companies to adhere to.

AdobeStock_319719051.jpeg

Program Assurance and Advisory

Aponix Protect helps firms address evolving cyber risks and threats to ensure that their cybersecurity needs are covered year-round. This solution is available in three tiers, each one designed to provide firms with a flexible, robust, responsive, and cost-effective cybersecurity program.

Latest Insights

abstract blue shapes connected by dots of light

The Department of Homeland Security Requires Pipeline Operators to Set Cybersecurity Safeguards

July 21, 2021

The U.S. TSA and DHS have issued a directive to operators of fuel and gas pipelines that requires them to improve their cybersecurity defenses.

Cyber Alert
  • Cybersecurity
  • Portfolio Company Risk Management
abstract blue shapes connected by dots of light

Ransomware Attack Shuts Down Major Fuel Pipeline; PE Firms Advised To Enhance Protections   

May 11, 2021

A ransomware attack has led to the shutdown of the Colonial Pipeline, the largest fuel pipeline in the U.S. The Colonial Gas pipeline supplies gasoline, jet fuel, and other products to the eastern and southern U.S., providing 45% of the East Coast supply of fuel.

Cyber Alert
  • Cybersecurity
  • Portfolio Company Risk Management
AdobeStock_317630718 1200x900.jpeg

Sneak Peek: ACA Spring Conference Aponix® Session Previews

May 06, 2021

ACA’s virtual spring conference is right around the corner. We encourage ACA Aponix clients to attend the sessions below or to invite other members of their teams to join in. Here’s a sneak peek at what you can expect and what you can expect to take away.

Article
  • Cybersecurity
  • Portfolio Company Risk Management
  • Events

Gas Pipeline Suffers Ransomware Attack

February 21, 2021

On February 18, the U.S. Department of Homeland Security’s Cybersecurity and Infrastructure Security Agency (CISA) issued an alert detailing a ransomware attack suffered by a natural gas compression facility. The ransomware attack led to a two-day controlled shutdown of operations, causing significant loss of productivity and revenue.

Cyber Alert
  • Cybersecurity
  • Portfolio Company Risk Management
Compliance Alert

ACA Aponix Named Due Diligence Firm of the Year at the 12th Annual International M&A Awards

December 07, 2020

ACA is proud to announce that ACA Aponix was named the Due Diligence Firm of the year at the 12th Annual International M&A Awards. The awards were announced at a Virtual Awards Gala celebration on Thursday, January 21st, 2021.

News
  • ACA News
  • Portfolio Company Risk Management
portco defend Blog - 980x550_5.png

Introducing the PortCo Defend™ Portfolio Risk Management Solution

October 19, 2020

We’re excited to announce ACA Aponix®'s Portfolio Company Risk Management and Monitoring solution, PortCo Defend™, a cybersecurity program and dashboard designed to help private equity firms assess and centrally monitor security threats and risks for their investment portfolio companies (PortCos).

Article
  • Cybersecurity
  • Portfolio Company Risk Management

Upcoming events

Senior Management Obligations under the SM&CR - 11 August 2021

The ever-increasing focus by the Regulators on the accountability of senior management, particularly when things go wrong, emphasises how important it is for individuals in senior positions to have a clear understanding of what is expected of them. This succinct course is designed to assist Senior Managers to have a full understanding of what they need to do to achieve compliance with the rules under the obligations created by the Senior Managers and Certification Regime (SMCR).

Online Training

Compliance Induction - 17 August 2021

Senior management in Financial Services firms have a responsibility to ensure their employees have sufficient knowledge and understanding of the Regulatory environment they are working in. This knowledge helps in emphasising the need for compliance with policies and procedures in order to protect the firm and the individual from failing to “do the right thing”.

Online Training