Private Equity – Portfolio Company Support



A private equity firm, with $45 billion in assets under management, seeks to evaluate the maturity of their Cybersecurity Incident Response (IR) capabilities within the firm, as well as the IR capabilities and practices implemented by their portfolio companies.


HKA’s cybersecurity and privacy team was commissioned to provide expert support to a global private equity firm / hedge fund, and 40 of its portfolio companies, to gather relevant information, conduct an analysis, produce maturity ratings, and provide recommendations across each companies IR program.

What we did

HKA is performing a cybersecurity IR capability assessment for the firm. Subject matter experts are measuring against guidelines on best practices in IR from the National Institute of Standards and Technology (NIST) and the International Organization for Standardization (ISO). The assessment will evaluate key areas of people, processes, data management, and technology to determine the maturity level of the IR capabilities.

Areas of focus for the IR review include organizational oversight and governance; IR capabilities; detection and analysis; containment, eradication, and recovery; and post-incident activities.

At the conclusion of the assessment, reporting will be provided in the form of a board-level readout regarding IR processes and capabilities, identified program gaps and other weaknesses, and high-level recommendations for maturity improvements.


HKA conducted high-level assessments on the client’s IR capabilities and provided remediation to the identified gaps.

HKA will provide updates as the portfolio companies continue to be consulted.

Project Details
  • Client
    Private Equity Firm
  • Year
    2021 - Ongoing
  • Value
    US $175,000
  • Services
    Third-Party & Vendor Risk Management
  • Sectors
    Cybersecurity & Privacy Risk Management