Mergers and acquisitions
Separating a business unit that is being sold, or putting two organisations together, is seldom easy. Quite apart from the logistical, financial and personnel issues, it can also be a time of significant risks to your organisation’s IT systems and data.
IT managers need to do the following tasks (and more):
- determine who owns all hardware, systems, data and software licences
- determine what data and systems should be made available to auditors, staff in the purchasing company and others involved in the sale process
- ensure that only the right staff have the correct access at all times
- identify system dependencies & interfaces
- segregate systems and data belonging to the unit being sold
- plan and execute the separation & divestment of hardware
- join two networks together (for mergers) or separate a network into two (for de-mergers)
- deploy new applications
- protect the confidentiality and integrity of all systems and data
- identify and manage all risks
- comply with the relevant regulatory frameworks and standards – which may have changed as a result of the M&A, and
- somehow continue to support business as usual.
Without careful planning this is close to impossible.
Inevitably, real-world pressures force IT managers to focus on operational issues, while security considerations are postponed until these are resolved. This can leave your organisation vulnerable during a period of major disruption. It’s here that Castelain can help.
We have the practical skills and experience to help you:
- identify the core assets and data that you need to protect
- determine who needs access to what before, during and after the merger or de-merger
- identify the controls you need
- implement these controls within your timeframe and budget
- help plan the network changes to minimise security risks, and
- ensure compliance with regulatory frameworks and standards.
