ACA Aponix Launches New PortCo Defend Cybersecurity Program

October 19, 2020

ACA Aponix®, part of the ACA Compliance Group (ACA), today announced the launch of PortCo Defend™, a cybersecurity risk management program and dashboard designed to help private equity firms assess and centrally monitor security threats to their portfolio companies (PortCos). Available now, PortCo Defend gives private markets a holistic view of their PortCos’ cybersecurity risk and provides oversight to track the progress of their PortCos’ efforts to remediate gaps and achieve their cybersecurity targets.

With 46% of businesses reporting at least one security incident since the start of the COVID-19 pandemic, firms globally are faced with a continued stream of threats.This problem is escalating, with 68% of business leaders believing cyber risks to their companies are increasing.

For private equity firms, the potential impact of a cyber threat can extend to the firms they oversee and across a range of sectors. Simply performing an IT due diligence test upon initial investment in a company is not enough. Cybersecurity, privacy, and risk should be ongoing concerns throughout the investment lifecycle.  According to the 2020 NSCP / ACA Aponix Cybersecurity Compliance Programs Survey, 8% of private equity firms have not reviewed any of their PortCos and of those who do, only 7% of firms are reviewing more than 76% of their PortCos.

Carlo Di Florio, Global Chief Services Officer, ACA Compliance Group, said, “Increased cybersecurity risks combining with the evolving challenges of the COVID-19 pandemic – a phenomenon ACA calls RiskMutation™ – mean private equity leaders need enhanced capabilities while also improving the efficiency, resilience, and scale of their programs.”

Chad Neale, Transaction Advisory Partner, ACA said, “Ransomware and phishing attacks will continue to rise in 2021 and beyond, and cyber-criminals have private equity firms and their portfolio companies in their crosshairs. PE firms must take action to protect their investments. But we also understand from working with hundreds of global private equity firms and their portfolio companies, the challenges, costs, and time considerations faced by the sponsor when introducing a program like this to their management teams. We built PortCo Defend to reduce the burden of managing cybersecurity on the sponsor and to show the value of the investment to the PortCos in improvements to their cybersecurity posture.

PortCo Defend is designed to clearly identify the portfolio investments that represent the greatest cyber risks. And it will establish an actionable remediation roadmap and ongoing monitoring through a methodology that minimizes impact on management and provides enough fidelity into the unique cybersecurity risks across the portfolio to drive change where needed."

Portco Defend is the latest cyber security offering in ACA’s cybersecurity, privacy and risk portfolio. The related Portco Protect™ offering is also available as part of a partnership with Alliant to help underwriters understand cyber risk and results in better coverage and more favorable premiums.

For More Information

ACA Compliance Group – U.S.
Krissy Kennedy, Managing Director of Marketing
+1 (857) 214-1740

ACA Compliance Group – Europe
Gobnait Will, Senior Marketing Manager
+44 (0)7825 943522

About ACA Aponix

ACA Aponix, a division of ACA Compliance Group, provides cybersecurity and technology risk assessments, data privacy compliance services, vendor and M&A diligence services, network testing, and advisory services. Our team of experienced technologists combines expertise across the breadth of cybersecurity and information technology. Our award-winning solutions are designed to help firms uncover risks and identify deficiencies in their cybersecurity policies, procedures, and controls.

For more information, visit

About ACA Compliance Group

ACA Compliance Group is a leading provider of governance, risk, and compliance advisory services and technology solutions. We partner with our clients to help them mitigate the regulatory, operational, and reputational risks associated with their business functions. Our clients include leading investment advisers, private fund managers, commodity trading advisors, investment companies, broker-dealers, and domestic and international banks. ACA is based in New York City and the Washington, D.C. area, and has offices in London and other U.S. cities.

For more information, visit