SCF-B Business Mergers & Acquisitions

The SCF-B is a subset of the SCF that is tailored for evaluating the cybersecurity and privacy risks associated with Mergers & Acquisitions (M&A) due diligence. Due to the potentially complicated nature of the M&A evaluation, we designed the SCF-B to be comprehensive in nature. The following frameworks are leveraged to identify appropriate cybersecurity and privacy controls that should be evaluated as part of M&A due diligence activities: 

  • SOC2

  • CIS CSC

  • COBITv5

  • COSO

  • CSA CCM

  • GAPP

  • ISO 27002

  • ISO 31000

  • ISO 31010

  • NIST 800-160

  • NIST Cybersecurity Framework

  • OWASP Top 10

  • UL 2900-1

  • EU GDPR

To see the mappings between the SCF-B controls and the applicable statutory, regulatory and contractual frameworks, sign up for a free account and download the complete SCF. You can customize the SCF for your own specific needs!

Secure Controls Framework Council, LLC (SCF Council) disclaims any liability whatsoever for the use of this website or the Secure Controls Framework™ (SCF). Use at your own risk.

 

If you have compliance questions, you should consult a cybersecurity or privacy professional to discuss your specific needs. This website is for educational purposes only and does not render professional services advice - it is not a substitute for dedicated professional services. There is no endorsement of any kind in the company listing of SCF Solution Providers - It is entirely your responsibility to conduct appropriate due care and due diligence in selecting and engaging with a consultant to assist in your implementation of the SCF.

SCF Council does not warrant or guarantee that the information will not be offensive to any user. User is hereby put on notice that by accessing and using the website, user assumes the risk that the information and documentation contained in the web site may be offensive and/or may not meet the needs and requirements of the user. The entire risk as to the use of this website, or its contents, is assumed by the user. ​

 

SCF Council reserves the right to refuse service, in accordance with applicable statutory and regulatory parameters.

© 2019. Secure Controls Framework Council, LLC

TM

  • White LinkedIn Icon
  • White Facebook Icon
  • White Twitter Icon
  • White Google+ Icon