Vendor Due Diligence
-
Linedata Breach – August 11th, 2025
Linedata’s Icon was targeted in a cyber attack on 11th August, 2025. The attack has resulted in reported outages of Icon while the investigation and recovery process are in progress. Their official statement is available here. The attack highlights that firms should always remain vigilant to an often-quoted phrase, “It’s a matter of when you’ll…
-
DORA Preparation Check List
The Digital Operational Resilience Act (DORA) has officially been in effect since 17 January 2025, following a two-year lead-up period—but many organizations are still playing catch-up. Although DORA is an EU regulation targeting the financial sector, including alts, its reach extends beyond Europe. U.S.-based companies that provide services to EU financial institutions, including subsidiaries, are…
-
Shifting Cyber Readiness into the Front Office
Cybersecurity has transformed from a once-a-year process to an ongoing effort. Managing risk has become increasingly digital and complex within alternative investment environments. Nowadays, it’s not just regulators you need to impress but your investors as well. In our latest webinar, Drawbridge’s Simon Eyre (CISO) and Louis Cordone (Head of Client Success) sat down together…
-
Executive Snapshot: Give LPs Real-Time Insight Into Your Cyber Posture
Can you easily demonstrate and explain your compliance needs to executives? If not, you need to make such capabilities a priority, particularly when it comes to cybersecurity. According to the 2024 Investment Management Compliance Testing Survey of 595 industry participants, more than 57% of investment adviser firms reported an increase in the scope and frequency…
-
[Webinar recording] Cyber compliance and cyber resilience: Mitigate vendor third-party cyber risks in alternative investments
Third-party vendors are instrumental in cost-effectively streamlining firms’ operations, but cyber risks among third-party vendors present a real and present threat. Watch our webinar recording where we discussed the critical issue of vendor risk from third-party supply chain cyber threats. In a dynamic interview format, Brandi Gatlin, Drawbridge’s Director of Strategic Partnerships, interviewed Robert Tello,…
-
Vendors – The overlooked cybersecurity risk for Private Equity firms
Performing annual Vendor Risk Assessments are a critical step that help Private Equity (PE) firms proactively manage the chances and impact of a cyber breach. Though vendors play a crucial role in streamlining firms’ operations, cyber risks among third-party vendors present a real and present threat. What you should know – Top third-party vendor risks for…
-
Drawbridge Releases Latest Version of Cybersecurity Program Management Platform
Latest release continues focus on quality-of-life and functional enhancements. Drawbridge is pleased to report another smooth production release for the Drawbridge cybersecurity program management platform. We completed QA last week and promoted the latest version to production on Wednesday, May 11. This release focused on quality-of-life enhancements for both Drawbridge and client users, including several functional enhancements.…
-
Privately-Backed, Midsize Companies are Becoming Targets for Hackers. Here’s How to Respond.
This week, the Wall Street Journal published an important article on cybersecurity for Private Equity and Venture Capital, with a focus on cyber risks facing Portfolio Companies. The Journal presents three key takeaways: Key Takeaways Midsize companies raising capital, or who have recently announced funding, are becoming increasingly attractive targets for hackers. A “perfect storm” of reasons…
-
Cybersecurity Best Practices for Venture Capital Firms
Technology-focused investment firms are at elevated risk for cyber breaches of any kind, even relative to more traditional or diversified funds. As cybercriminals continue to advance their methods for stealing from and defrauding businesses, it is important to consider one’s cybersecurity measures and how to fight back against advancing crime–particularly for the partners and employees…
-
How Real Estate Investors can Benefit From Cybersecurity
Real estate investors and operators are quickly coming to learn the need of cybersecurity. With digital transformation only accelerating in the era of Covid, more and more assets and private information are being safeguarded online. At the same time, cyber threats have been increasing at a monumental rate, necessitating adjustments and investments across all industries…
-
Market Spotlight: The Necessity of Cybersecurity for Venture Capital Firms
Investment firms of all types are at a risk for data breaches. In this modern era, firms are dealing with personal and financial information often at a digital level. Because of this, the risk for potential cyber-attacks increases, and the manner with which malicious parties attack these firms are in constant flux. Venture capital firms…
-
Service Spotlight: Regulatory Readiness
Financial regulators often hold high standards to the cybersecurity practices of hedge funds and registered investment advisors. In order for firms to meet regulatory requirements, effective and well-maintained cybersecurity programs are necessary. Often, the goal is not only to shore up cybersecurity within your firm, but to bring your firm into the fold of countless…
