Reviewing IT in Due Diligence Are you buying an IT asset or liability
Produktdetaljer
Biographical note
Bryan Altimas has over 32 years’ experience of technology risk management, having led teams performing technology due diligence, and having advised organisations in numerous business sectors, locations and circumstances on the effectiveness of their technology strategy in delivering business objectives. He is a qualified accountant, Certified Information Systems Auditor (CISA) and Certified in Risk and Information Systems Control (CRISC). He left KPMG in 2014 after 17 years, having contributed to their IT due diligence methodology.
Chris Wright is a qualified accountant and Certified Information Systems Auditor (CISA) with over 30 years’ experience providing financial and IT advisory and risk management services. He worked for 16 years at KPMG, where he managed a number of IT due diligence reviews and was head of information risk training in the UK. He has also worked in a wide range of industry sectors including oil and gas, small and medium enterprises, public sector, aviation and travel.
"I found this book very interesting. Due diligence is one of those functions that happens way before us 'IT'ers' get involved and so this is a useful insight into the work that happens up front and the evidence we can obtain for our work even if we were not involved in the initial due diligence." Chris Evans, ITSM Specialist "Being new to this subject I found the guidance solid and presented in an excellent style. I found it an excellent and informative read." Brian Johnson, CA
Reviewing IT in Due Diligence provides an introduction to IRM in due diligence, and outlines some of the key IT issues to consider as part of the due diligence process. For those new to the process, it explains how to conduct an IT due diligence review, from scoping to reporting, and includes information on post-merger integration to realise business benefits from the deal. For more experienced practitioners, Reviewing IT in Due Diligence provides fresh insight into the process, highlighting issues that need to be addressed, and provides a business case for IRM involvement in the due diligence process.
Reviewing IT in Due Diligence provides an introduction to IRM in due diligence, and outlines some of the key IT issues to consider as part of the due diligence process. For those new to the process, it explains how to conduct an IT due diligence review, from scoping to reporting, and includes information on post-merger integration.
1: Introduction to Due Diligence
2: Why is IT Important in Due Diligence?
3: Systems Reviews
4: IT Security
5: Data Reviews
6: Reviewing Projects and Changes in Progress
7: IT Service Provision and Value for Money
8: Reporting IT Due Diligence Assignments
9: Post Due-Diligence
When you merge with or acquire another business, you also gain their IT and data. In an ideal world this integration would be seamless and easy. In reality, however, this is often not the case. Mergers can, for example, lead to badly configured data or the loss of sales systems. These IT issues are often overlooked in due diligence reviews. In a world of increasing cyber attacks and information security threats, this can be a very risky mistake to make.
Reviewing IT in Due Diligence provides an introduction to information risk management (IRM) in due diligence, and outlines some of the key IT issues to consider as part of the due diligence process.
It explains how to conduct an IT due diligence review, from scoping to reporting, and includes information on post-merger integration to maximise the business benefits. It alsoprovides fresh insight into the process, highlighting issues that need to be addressed, and provides a business case for IRM involvement in the due diligence process. Comprehensive case studies are included throughout the book.
About the authors
Bryan Altimas has over 32 years’ experience of technology risk management, having led teams performing technology due diligence, and having advised organisations in numerous business sectors, locations and circumstances. He is a qualified accountant, Certified Information Systems Auditor (CISA) and Certified in Risk and Information Systems Control (CRISC). He left KPMG in 2014 after 17 years, where he had contributed to their IT due diligence methodology.
Chris Wright is a qualified accountant and Certified Information Systems Auditor (CISA) with over 30 years’ experience providing financial and IT advisory and risk management services. He worked for 16 years at KPMG, where he managed a number of IT due diligence reviews and was head of information risk training in the UK.
Produktdetaljer
Biographical note
Bryan Altimas has over 32 years’ experience of technology risk management, having led teams performing technology due diligence, and having advised organisations in numerous business sectors, locations and circumstances on the effectiveness of their technology strategy in delivering business objectives. He is a qualified accountant, Certified Information Systems Auditor (CISA) and Certified in Risk and Information Systems Control (CRISC). He left KPMG in 2014 after 17 years, having contributed to their IT due diligence methodology.
Chris Wright is a qualified accountant and Certified Information Systems Auditor (CISA) with over 30 years’ experience providing financial and IT advisory and risk management services. He worked for 16 years at KPMG, where he managed a number of IT due diligence reviews and was head of information risk training in the UK. He has also worked in a wide range of industry sectors including oil and gas, small and medium enterprises, public sector, aviation and travel.