The globalization of markets and capital, combined with greater governmental sensitivity to potential national security issues, has elevated national security risk in the spectrum of business concerns. Managing CFIUS, Team Telecom and foreign ownership, control and influence (FOCI) requirements, as well as sanctions and export controls compliance, calls for a partner with deep regulatory experience, extensive due diligence capability and local intelligence-gathering in locations around the world.
Develop a clear understanding of CFIUS risk, including due diligence on investors, cybersecurity risk review and mitigation planning.
Design and implement a robust and operational CFIUS compliance program, with clear milestones and deadlines.
Engage experienced CFIUS advisors ongoing counsel and assistance.
Establish open communication channels to support your CFIUS compliance program, with executive leadership, operational stakeholders and monitoring agencies.
Whether you are a private fund adviser evaluating potential foreign limited partners, a foreign-owned company seeking to understand how the U.S. government may view your U.S. investment through a national security lens, a manufacturer ensuring export controls and sanctions compliance across your supply chain, or a foreign-owned telecommunications carrier seeking to mitigate potential risks associated with your managed service providers, Kroll can help.
Our CFIUS and National Security Advisory practice includes former senior U.S. government officials with firsthand experience setting the direction of CFIUS, Team Telecom and other national security regulatory bodies. Many of our professionals have led foreign investment review teams at the U.S. Department of Defense, Department of Homeland Security and Department of Commerce. Having served on the other side of the negotiating table as high level U.S. government officials or as their agents, our professionals have unique insight into the concerns that the U.S. government may have about a transaction beyond the four corners of the regulations. Their expertise is complemented by a global team of professionals drawn from the ranks of former prosecutors, law enforcement and intelligence officers.
Because our global network of offices is staffed with well-connected local nationals, our due diligence provides comprehensive political, social and reputational portraits that go beyond what appears in legal and financial records. Coupled with unique insights derived from firsthand experience within U.S. national security regulatory bodies, our intelligence enables us to advise on whether findings for a foreign entity will be significant or not.
Our team’s experience allows us to view third parties and potential transactions through the same national security lens that regulators do. Our evaluations look at actual practices rather than mere self-assessments, so we are able to spot issues before they become full-fledged problems—whether concerning a potential acquisition target, a supplier or the home company.
Our CFIUS and National Security Advisory practice can assure regulators of an organization’s compliance with national security obligations and risk mitigation efforts by providing trusted third-party monitoring and compliance audits.
Our CFIUS and National Security Advisory team works closely with our Cyber Risk practice to identify vectors likely to raise concerns with CFIUS or Team Telecom.
We then develop strategies to create the necessary data separation and protection to give regulators comfort that the perceived national security risk has been mitigated.
When suspected or actual national security compliance violations occur, we help organizations identify the root of the problem and implement the controls necessary to prevent further incidents and respond to regulatory action.
Kroll’s Virtual CISO (vCISO) services help executives, security and technology teams safeguard information assets while supporting business operations with augmented cyber expertise to reduce business risk, signal commitment to data security and enhance overall security posture.
Kroll's cyber risk assessments deliver actionable recommendations to improve security, using industry best practices & the best technology available.
Kroll’s HIPAA security risk assessments are unique in how they help you meet HIPAA standards.
The Federal Trade Commission (FTC) Safeguards Rule requires non-banking financial institutions to develop, implement and maintain an information security program with safeguards designed to protect customer information, all by June 9, 2023. Kroll’s Cyber Risk team has the service capabilities to help your organization tackle the FTC Safeguards Rule line-by-line.
by Andrew Rathbun, Eric Zimmerman
by David White
by George Glass
by George Glass