Due Diligence Report Language
1. A non-technical 2-page summary of all due diligence findings, framed in terms of business impact and financial risk rather than technical details, written for the CEO and board is called:
2. The due diligence team uses 'Red / Amber / Green' to communicate risk levels across all findings. This classification system is called:
3. The due diligence report includes a structured table with each identified risk, its severity, the owner responsible for remediation, the proposed mitigation, and the estimated cost. What is this table called?
4. A finding that an entire organisation's intellectual property is committed to a personal GitHub account owned by the CTO — not a company account — is described as a 'red flag.' In due diligence language, what does 'red flag' mean?
5. After presenting the findings, the due diligence team recommends that $2M be placed in escrow to cover remediation of the 3 critical findings. What is an escrow in this context?
Exercise complete!
out of 5 questions