September 08, 2017

New ABA book offers guidance on cybersecurity due diligence in M&A deals

CHICAGO, Sept. 8, 2017 — In today’s data-driven economy, cybersecurity has become a key risk factor in mergers and acquisitions. A new book by the ABA Business Law Section, “Guide to Cybersecurity Due Diligence in M&A Transactions” is designed to assist companies and their counsel in assessing the risks.

With discussions on and lessons learned from recent cyber incidents at Neiman Marcus, Yahoo, Target, Sony Pictures and Volkswagen, the book provides detailed and easy-to-read guidance on identifying and evaluating cybersecurity risks for an M&A deal. Beginning with an introduction to the importance of this issue, “Guide to Cybersecurity Due Diligence” will help lawyers understand the key requirements and importance of the cybersecurity due diligence process that should be part of every M&A transaction, including:

·        Identification of the target’s high-value digital assets, and evaluation of the relative importance of those assets to the target’s business

·        Evaluation of the status of the target’s cybersecurity regulatory compliance

·        Impact of due diligence on the proposed transaction

  • Evaluation of the target’s overall resilience and general ability to withstand a direct cyber-attack on its digital assets
  • Emerging challenges to cybersecurity due diligence

The appendix includes a listing of common U.S. data security laws and regulations.

“Guide to Cybersecurity Due Diligence in M&A Transactions” is a collaborative work by a team of attorneys who are leading professionals in the fields of corporate governance and cybersecurity, and is edited by Thomas J. Smedinghoff and Roland Trope.

Smedinghoff is of counsel in the Privacy & Cybersecurity practice group in the Chicago office of Locke Lord LLP. His practice focuses on the developing field of information law and electronic business activities, with an emphasis on electronic transactions, identity management, data security, privacy and corporate information governance issues.

Trope is a partner in the New York offices of Trope and Schramm LLP. He advises allied governments and contractors on defense procurements, protection and licensing of intellectual property, cross-border tech transfers, export controls, economic sanctions regulations, anti-corruption laws, cybersecurity for critical infrastructure enterprises and ethics regulations for government contractors.

Title:                      Guide to Cybersecurity Due Diligence in M&A Transactions

Publisher:              ABA Publishing/Business Law Section

Pages:                   272

Product Code:       5070747

ISBN:                     978-1-63425-894-4

Size:                      6x9

Binding:                Paperback

Price:                     $89.95

Orders:                  800-285-2221 or

Editor’s note: Author interviews and review copies of this book are available by emailing Katrina Krause at If you publish a review of this book, please send tear sheets or a copy for our files to Katrina Krause, ABA Book Publishing, 321 N. Clark St., Chicago, IL 60654.

Go to for the ABA’s new feature that will cite case and statutory law and other legal precedents to distinguish legal fact from fiction.

With more than 400,000 members, the American Bar Association is one of the largest voluntary professional membership organizations in the world. As the national voice of the legal profession, the ABA works to improve the administration of justice, promotes programs that assist lawyers and judges in their work, accredits law schools, provides continuing legal education, and works to build public understanding around the world of the importance of the rule of law. View our privacy statement online. Follow the latest ABA news at and on Twitter @ABANews