In an expert analysis published in Law360, Partners Robert Finkel and Ariel Soiffer, and Associate Helen Park discuss the global effects of the recent CrowdStrike outage and explore some of the protections that customers should consider in their IT agreements to address the risks posed by critical, interconnected third-party systems.
Excerpt: “As an initial exercise, a customer should conduct a thorough due diligence exercise prior to selecting a vendor. As part of the due diligence review of any vendor, in addition to assessing the technology, the customer should carefully assess performance history, backup capabilities, financial wherewithal, disaster recovery plans, support processes, security measures and client references, among other matters.”