Eric Hasty
Associate Managing Director
Cyber and Data Resilience
Chicago
Cybersecurity Due Diligence Services
Evaluate the cybersecurity risks associated with business transactions.
Contact Cyber ExpertsIdentify and Understand the Cybersecurity Risks of Potential M&A Transactions
Kroll’s Cyber Due Diligence service provides a thorough evaluation of the cybersecurity capabilities and potential cyber risks associated with a potential transaction. Leveraging real-time threat intelligence and our three-tier assessment framework, we help you uncover hidden vulnerabilities and understand the potential financial implications before finalizing a deal.
Key Outcomes of Cyber Due Diligence
Early visibility of security risks
We enable informed investment decision-making at the outset of the deal lifecycle, providing early visibility into security risks and guidance on risk treatment through automated analysis against risk scenarios most relevant to the target entity.
Insight into financial implications of cyber risks
We provide insights into the potential financial impacts of identified cybersecurity risks on deal valuation. Our assessments are based on high-fidelity information available at the time, helping to inform negotiations and prepare for potential financial outcomes.
Addressing gaps with minimum operational disruption
We provide targeted recommendations associated with planned integration or separation of the target's cybersecurity functions based on business objectives.
How It Works
Kroll’s Cybersecurity Due Diligence service is designed to provide actionable insights into cybersecurity capabilities and risks throughout the M&A lifecycle. We employ a three-tier approach to identify and assess cyber risks, enabling informed decision-making and strategic planning.
Why Choose Kroll for Cyber Due Diligence?
- Frontline Threat Intelligence from Thousands of M&A, Incident Response and Regulatory Engagements
Kroll integrates real-world intelligence from thousands of engagements annually, offering relevant threat models and assessments based on up-to-date attack vectors and industry-specific risks.
- Comprehensive Advisory and Technical Expertise
Our team combines strategic advisory with technical assessments, ensuring clients receive both high-level guidance and in-depth analysis for every aspect of a transaction.
- End-to-End Support Throughout the M&A Lifecycle
From pre-deal assessments to post-merger integration, Kroll’s experts provide continual guidance, ensuring comprehensive risk management across all stages of the M&A transaction.
- Minimal Business Disruption
Kroll uses remote and minimally invasive technologies for evaluations, reducing disruptions to business operations while delivering efficient and effective cyber due diligence results.
Frequently Asked Questions
Connect With Us
Adam Malone
Global Head, Acute Events
Cyber and Data Resilience
Atlanta
Ira Levy
Associate Managing Director
Cyber and Data Resilience
Washington DC
Colin Sheppard
Regional Managing Director, EMEA
Cyber and Data Resilience
London
Tiernan Connolly
Managing Director
Cyber and Data Resilience
Dublin
Cyber and Data Resilience
Incident response, digital forensics, breach notification, security strategy, managed security services, discovery solutions, security transformation.
Virtual CISO (vCISO) Advisory Services
Kroll’s Virtual CISO (vCISO) services help executives, security and technology teams safeguard information assets while supporting business operations with augmented cyber expertise to reduce business risk, signal commitment to data security and enhance overall security posture.
Cyber Litigation Support
Whether responding to an investigatory matter, forensic discovery demand, or information security incident, Kroll’s forensic engineers have extensive experience providing litigation support and global eDiscovery services to help clients win cases and mitigate losses.
Data Protection Officer (DPO) Consultancy Services
Kroll's data privacy team provide DPO consultancy services to help you become and stay compliant with regulatory mandates.
Kroll Responder
Stop cyberattacks. Kroll Responder managed detection and response is fueled by seasoned IR experts and frontline threat intelligence to deliver unrivaled response.
Cyber Risk Retainer
Kroll delivers more than a typical incident response retainer—secure a true cyber risk retainer with elite digital forensics and incident response capabilities and maximum flexibility for proactive and notification services.
Notification, Call Centers and Monitoring
Kroll’s data breach notification, call centers and monitoring team brings global breach response expertise to efficiently manage regulatory and reputational needs.
Comprehensive Due Diligence Solutions
Our Comprehensive Due Diligence solutions help clients minimize risks and make the most informed business decisions. We support in the areas of tax, compliance and regulatory, ESG, operations/strategy, M&A, financial and accounting, investigations, disputes and cyber/IT risk.
Attack Surface Management: Tips, Tools & Strategies
Cyber
Attack Surface Management: Tips, Tools & Strategies
March 6, 2024
Cyber
Cyber Insurers Increase Focus on Due Diligence
November 4, 2022
Publication
Case Study: Global Software Leader Leverages CyberClarity360™ For GDPR Compliance
May 17, 2019
by Brian Twardoski
Publication
Case Study: Third-Party Cyber Risk Assessment Velocity Increased 400%
May 16, 2019
by Brian Twardoski
Kroll Appoints Katherine Keefe to Lead Global Cyber Insurance Industry Capabilities
Press Release
Kroll Appoints Katherine Keefe to Lead Global Cyber Insurance Industry Capabilities
October 18, 2024
Press Release
Kroll Becomes Relativity Gold Provider Partner
September 19, 2024
Kroll in News
Kroll Recognized in 2024 Gartner Market Guide for Digital Forensics and Incident Response Retainer Services for the Fifth Consecutive Year
September 12, 2024
Press Release
Kroll Expands AI Risk Consulting Services
August 27, 2024
Kroll is headquartered in New York with offices around the world.
One World Trade Center
285 Fulton Street, 31st Floor
New York NY 10007
Sign up to receive periodic news, reports, and invitations from Kroll.
Our privacy policy describes how your data will be processed.
© 2025 Kroll, LLC. All rights reserved.
Kroll is not affiliated with Kroll Bond Rating Agency,
Kroll OnTrack Inc. or their affiliated businesses. Read more.