Call Us
Contact Us
Request A Demo
Contact Us
Request A Demo
Home > Resources > Page 2

Stay Informed. Stay Ahead.

Cyber risk doesn’t stand still – and neither do we. Our resources give you the insight, analysis and real-world examples you need to raise your guard and keep pace with investors, regulators and the market. From in-depth insights and practical case studies to events and timely webinars, our resource hub is built to arm you with knowledge that strengthens resilience and supports smarter decisions.

Insights

View all
  • The cyber score as market context, not abstraction A meaningful cyber score is not just an internal management tool. It reflects how firms are already being viewed externally. Increasingly, cyber maturity is assessed comparatively during due diligence, regulatory reviews, and insurance underwriting. Firms are measured against peers, and gaps are quickly exposed. This is where independence and data scale matter. A score derived from a narrow ecosystem or a single IT provider’s client base offers limited context. In contrast, a score grounded in broad market data provides PE firms with a realistic view of how portfolio companies stack up across the industry, not just within a closed environment. Customized benchmarking for better decisions One of the most important developments in cyber scoring is the ability to customize peer benchmarking. Not all comparisons are equally useful. A software business should not be measured against a manufacturing firm, nor a growth-stage company against a mature enterprise. Customized peer groups allow sponsors to benchmark portfolio companies against organizations that are genuinely comparable by size, sector, geography or operating model. This creates more relevant insight and supports better decision-making. Sponsors can identify which companies are performing strongly relative to peers, and which require targeted intervention to avoid becoming value-draining areas of elevated risk. Just as importantly, customized benchmarking allows PE firms to identify characteristics they want to emulate across the portfolio, using high-performing peers as reference points rather than theoretical best practice. From score to strategic tool When used correctly, a cyber score becomes far more than a compliance checkbox. It becomes a portfolio management tool that supports prioritization, reporting, and governance. Strong scores can be used to demonstrate maturity to LPs and buyers, while weaker areas are surfaced early enough to address without time pressure. In an environment where cyber scrutiny continues to intensify, knowing your portfolio’s cyber position is no longer optional. The firms that benefit most will be those that treat the cyber score not as a technical output, but as a strategic signal - one that creates clarity, confidence and control across the portfolio.

    The Drawbridge Cyber Score as a portfolio tool – from measurement to meaningful comparison

    By Eric Bernstein, CEO, Drawbridge  Cyber risk has become a defining factor in how private equity firms protect value, manage portfolios and demonstrate governance to investors. Yet for many PE sponsors, cyber oversight remains fragmented, reactive or difficult to scale across multiple portfolio companies. In this three-part series, we explore how portfolio-level cyber analytics are…

    Read more: The Drawbridge Cyber Score as a portfolio tool – from measurement to meaningful comparison
  • Two professionals walking down a curved indoor staircase

    Portfolio company analytics – why cyber oversight now defines value creation

    By Eric Bernstein, CEO, Drawbridge  Cyber risk has become a defining factor in how private equity firms protect value, manage portfolios and demonstrate governance to investors. Yet for many PE sponsors, cyber oversight remains fragmented, reactive or difficult to scale across multiple portfolio companies. In this three-part series, we explore how portfolio-level cyber analytics are…

    Read more: Portfolio company analytics – why cyber oversight now defines value creation

  • The Weakest Link Is Rarely Where You’re Looking: Third-Party Cyber Risk Under Reg S-P

    By Simon Eyre, Chief Information Security Officer, Drawbridge Why intelligence-led approaches are essential to meet rising threats, regulatory demands and investor expectations Alternative investment firms have strengthened internal cybersecurity significantly over the past decade. Controls are more mature, governance is better defined, and boards are more engaged. Yet many of the most disruptive incidents still…

    Read more: The Weakest Link Is Rarely Where You’re Looking: Third-Party Cyber Risk Under Reg S-P
View all

Case Studies

View all

  • Managing Cyber Resiliency While Switching MSPs: A Case Study

    Switching MSPs had the potential to destabilize their cyber program and introduce unwanted risks – this Hedge Fund worked closely with Drawbridge to make sure that didn’t happen. Using a Managed Service Provider (MSP) to oversee IT infrastructure is common amongst Alternative Investment Managers. We at Drawbridge understand that working closely with an MSP is…

    Read more: Managing Cyber Resiliency While Switching MSPs: A Case Study

  • Enhancing Private Equity Security: A Case Study on Mitigating Cybersecurity Risk

    With an increasing number of cyber threats and attacks targeting sensitive financial data, it is imperative for alternative investment firms to implement robust cybersecurity measures. Increasing investor and regulatory demands on firms’ cybersecurity programs add further complication and urgency to this effort.   This is especially true of private equity, where funds must not only focus…

    Read more: Enhancing Private Equity Security: A Case Study on Mitigating Cybersecurity Risk
View all

Events & Webinars

View all
  • Simon Eyre, Drawbridge CISO speaking at the LPGP Connet show in London

    Cyber Wake-Up Calls from the PE Front Lines

    At this year’s LPGP Connect CFO/COO Private Equity conference in London, cybersecurity wasn’t just a topic—it was the topic. While Chatham House rules apply (so we’ve omitted names), the messages were loud and clear: “There are two types of firms—those who’ve been hacked and know it, and those who’ve been hacked and don’t.” “60% of…

    Read more: Cyber Wake-Up Calls from the PE Front Lines
  • Managing AI in Alts: Practical Insights for Legal, Compliance, and Operations Teams

    ON DEMAND: Managing AI in Alts: Practical Insights for Legal, Compliance, and Operations Teams

    AI is no longer just a trend—it’s a business necessity. In this on-demand session, our expert panel explores how alternative investment firms can navigate the complexities of implementing AI within regulated environments. Moderated by Drawbridge CISO Simon Eyre, the conversation features insights from Marshall Terry (COO/CCO, Haidar Capital Management) and Louis Cordone (Head of Advisory,…

    Read more: ON DEMAND: Managing AI in Alts: Practical Insights for Legal, Compliance, and Operations Teams
  • Female investor reviewing cyber due diligence to ensure she makes a smart investment decision

    ON DEMAND: Cyber Risk & Investments | Why It Matters in 2025

    Part I – Why Cyber Risk is Now a Material Factor in Investment Decisions 2024 marked a pivotal shift—cybersecurity is no longer just an IT issue; it’s a material investment risk. Cyber incidents now directly impact investment returns, making cybersecurity a critical factor in due diligence, portfolio management, and exit strategies. Learn from Lauri Haas,…

    Read more: ON DEMAND: Cyber Risk & Investments | Why It Matters in 2025
View all