Connect with us

Accounting

Tech integration after a merger both an art and science says firm leaders.

Published

on

The process of merging one accounting practice into another, larger firm will always raise questions, not the least of which is how, and to what degree, they will integrate their technology. This, in turn, raises a host of other questions for both acquirer and acquiree — and no matter how they decide to answer these questions, though, working through them is always a process. 

Firms with significant experience in M&A will point to a range of issues that need to be addressed during integration, but the most common are these:

  • Data management;
  • Cybersecurity;
  • IT culture; and,
  • Timing and cost.

Data conversions a challenge

One of the biggest challenges is data management, something that often comes up in the acquisition process. Scott MacChesney, vice president of integration for Top 25 Firm Citrin Cooperman, said it’s important to extract client data to ensure a smooth transition.

“The firms we bring in tend to have inconsistent client data systems or no [client relations manager] at all, or the way they manage client data is partially manual and partially through email,” he said, adding that this is so important because “that is one of the key things to make sure we can still service clients well on Day 1 and employees can still understand and see reports on their clients on Day 1,” he said. 

Data migration and transfer

tanoy1412 – stock.adobe.com

Beyond just extracting the data itself is converting it to the firm’s standards, which V. Allen Smith — chief information officer for Top 10 Firm Baker Tilly— said goes past just file formats and into basic definitions, which he said are not as simple as they seem.

“How do you define a client? How do you define a project? How do you define an engagement? … If you’re serving a multinational [for instance], is each legal entity a client, or do you have a parent-child client relationship? What systems generate the unique client ID? Is it your audit system, your assurance system, your tax system, your practice management system? It’s all about coming up with those definitions. Based on that, the 0s and 1s take care of themselves,” he said. 

Firms handle this through both automated and manual processes. Mike Giuli, chief information officer at Top 25 Firm Cherry Bekaert, said their firm uses spreadsheet-based templates for determining key pieces of information that they send to the other firm to fill out. While these have been used effectively for years, he noted that there is a certain granularity that can be lost in the process, which is why they are also developing what he called an “ingestion engine” that can take in raw data for processing.

“So now what we’re doing is we’re building [in] our data lake a landing pad so we can bring in the raw data and do the transformation on our side versus through spreadsheets. … Over the last year we’ve identified the need for this and so we’re trying to create an easier automated and repeatable way that will maximize the time and productivity [improvements] for the firm,” he said. 

John Roman, chief information officer of Top 50 Firm The Bonadio Group, said his firm employs a combination of both manual and automated processes to input and process the necessary data. He noted that it’s important that everyone be on the same systems, whether that’s practice management systems, tax prep systems, or even email systems. “Massaging” all this data to fit with their own platforms tends to be a time-consuming task. 

“We use a combination of internal resources as well as our software providers that we use to help us. A good majority of the times we are using specific software scripts that take the data and format it in a way that can get into our systems. That is the automated part. The manual part, though, is someone still needs to validate the data [to check if it was] converted correctly,” he said. 

Roman noted, though, that much of this process begins with a questionnaire that helps them understand what data even needs to be migrated in the first place. And sometimes firms tell them they only need the old data for historical purposes and that they’ll enter data into Bonadio’s systems from that day on.

Cybersecurity and governance

Cybersecurity is another major part of the mergers and acquisitions process. Different firms can have different levels of risk tolerance, which informs their individual policies and programs. But while the particulars may vary, acquiring firms generally expect the merged-in firm to adhere to their own cybersecurity standards and procedures. 

“On Day 1, everyone adheres to our information security policies and procedures. We have certain standards in place that protect both client and employee data and before we bring data in from our merged-in firms, we make sure it is fully scanned and malware free. And we have certain technology controls in place that the merged-in firm would need to follow,” said Roman from Bonadio. “It is never, ‘Well, you can keep doing your own thing from an infosec perspective’ — they have to use our procedure and technical controls.” 

Cybersecurity collaboration

GG Kenji – stock.adobe.com

MacChesney from Citrin Cooperman said they assess cybersecurity risks for incoming firms the same way they assess it for new clients, noting, “We don’t cut corners, we really implement the playbook.” While he suggested that cybersecurity alignment is more of an ongoing conversation, there is still the general expectation that the incoming firm will adhere to certain expectations and policies. 

“The changes are more about communicating to the income firm what the expectations in our environment are, and what the needs of our firm are, to be comfortable with the transaction. That is what it really comes down to, [cutting down on] surprises after we close. We communicate as early and as often as possible,” he said. 

Similarly, while Baker Tilly’s Smith said it’s more about having a conversation to see where the firms align on risk tolerance, ultimately there is expected to be an alignment within the combined firm, as it does no good to have everyone on different systems. 

“We’ll take this combination as an opportunity to address those kinds of areas where you might be misaligned, like how you use multifactor authentication. To the degree where the smaller firm is maturity-wise … These combinations are a great opportunity to get into alignment and — again, it’s not on our firm or their firm but the new firm, the combined firm — once you get that, we’ve all agreed this is what we’ll be doing, now the discussion can be when do we do it? Do we do it on Day 1? Is that something we’ll do on Day 180? I would say some are Day 1 and some don’t have to be,” he said.

This goes beyond just what tools are used, however. Cherry Bekaert’s Giuli said that while many things are negotiable with the new firm, compliance and data management standards are “one of the non-negotiables.” For instance, he said new firms need to adhere to Cherry Bekaert’s own data retention policies. Some firms, he said, don’t have one at all, and might have emails going back 20 years (versus the one year his firm requires).

“So it really becomes a change management exercise and this is one of the things where we put a lens on what people will need to do differently tomorrow versus today. As you look at acquisitions, every one of them is different, so [it’s important] to understand what our rules and our policies are going in and saying, ‘Here is what you need to adhere to’ and understand where we are today and how we help them move to make sure they’re complying with our policies,” he said, adding at a different point that this also includes security policies like ensuring everything is firewalled. 

IT cultures

Another technology challenge in the merger process has nothing to do with the technology itself but, rather, the culture behind it. Different firms have different cultures overall, and this includes their IT culture as well. Some firms have one big, centralized team while others have several smaller specialized ones; some firms cloister their IT people from the other professionals while others embed them directly into teams; some are thought of as mainly troubleshooters and support, while others take a more strategic role.

Managing this issue is mainly an exercise in diplomacy, in particular being open and transparent and not demanding everything change immediately. Bonadio Group’s Roman said everyone always has lots of questions when they’re merged in, and that includes the IT team. Taking care to answer these questions and being open about what those answers mean can go a long way in reducing the anxiety and stress that might come with an acquisition. 

IT culture
Team partnership unity and collaboration concept connecting with teamwork as a business metaphor with diverse people connected together as a work symbol for employee cooperation with 3D illustration elements.

freshidea – stock.adobe.com

“Human nature is people have questions: How will this affect me, how will I support my users, how do I fit into this new group? So we spend a lot of time pre-merger working with them to integrate them with our own IT team. … so they feel part of the team,” he said. 

Another common point was how important it is to recognize what makes a particular team unique and to not bulldoze over that in the quest to assimilate their culture. Smith, from Baker Tilly, notes that each firm is “unique and special” and stressed he does not mean this in a feel-good personal sense but in a pragmatic one. 

“Every organization we have ever combined with, their IT team did something better than our IT team, regardless of size. So how can we bring that learning into this new combined organization and have that be in the culture?” he said, noting that this makes it difficult to talk about a unitary IT culture, as it changes with every firm they merge in.

While Giuli, from Cherry Bekaert, put a little more emphasis on his firm’s own culture, like Smith he noted that every acquisition brings new skills and competencies into the firm, and IT is no exception. Recognizing that and working it into their own procedures is what helps bring teams together. 

“You’ve got to understand the talents firms have and how they all fit together. You also need to know it’s sometimes an evolution — you can’t assume everything will work smooth on Day 1. You try your best, you constantly figure out ways of working in the culture to bring the teams together. You may get talent you didn’t have before, so it may result in the creation of new capacities you didn’t have before, by virtue of the people in play,” he said. 

MacChesney from Citrin Cooperman, described a similar approach and emphasized that it’s important to communicate that you’re there to amplify what already makes them special, not squash it beneath your feet. He said there’s a general acceptance of a firm’s “quirks” and his firm tries to maintain that even as they’re merged in. He said they don’t want them to lose whatever ethos or culture made them an attractive buy in the first place.

“It’s my job to make sure that their voices are heard, that those cultural nuances are identified, and that when we do implement change, we explain the why behind stuff, and that we also understand it’s a two-way street with the why. I need to understand why they do something and they need to understand why we might want it to change, and that is how you build that understanding. So we can definitely migrate or bring on a firm and fully integrate it into our firm, and then still have their own unique way of doing things or their own unique kind of subgroup cultures,” he said. 

Timing and cost 

While declining to share specific total figures, the firms we spoke to generally agreed that aligning with a merged-in firm on a technology level is not free. Beyond the technical and cultural considerations are also serious material expenses. 

MacChesney from Citrin Cooperman said, in fact, that is probably the most expensive aspect of the process, as it involves bringing in new devices, which in turn necessitates adding layers of infrastructure and security. He added that, depending on the systems they want to integrate into their main tech stack, there may even be a need for software developers to craft their own custom application programming interfaces, which could take additional time and money. One of the main ways they control these expenses is by handling things through an in-house dedicated team versus hiring consultants or outsourced talent. 

“We know what our infrastructure can do and are fully tied into our IT environment as subject matter experts. That, to me, is the biggest driver in cost reduction on the tech side. These people are professionals, they know the questions to ask and the things to look for, and I’m not saying we’re perfect, but they at least know the scary things to look out for on the highway,” he said. When asked for an example of a “scary thing,” he mentioned disaster recovery, saying that many smaller firms do not have “the capital or robust IT environment” to support it, and so the team makes sure to put that in place if it’s missing. 

He also noted that tech expenses aren’t “taking our breath away or making us shy away from the transactions we’ve done,” noting that if it the costs were very significant, the firm likely would not have done 20-plus deals over the years. 

As far as how long it takes, he said 90-100 days “is probably par for the course.”

Bonadio Group’s Roman said that at his own firm most of the cost is additional licenses. For instance, after merging in a smaller firm, he might suddenly need to budget for 25 additional Microsoft 360 licenses. Beyond that, they might also need to buy more cloud servers or laptops. 

As far as timeframe goes, he said six to eight months is typical for a larger firm, with the vast majority of the work coming in the final two months. 

“So, for the first six to eight months, let’s plan and work closely with their IT team, and start going over equipment. In the last six to eight weeks, we do a ton of work. We start with data migration, mapping data fields from one system to the next,” he said, adding that for a smaller firm the whole process takes about six to eight weeks total. 

Meanwhile, Baker Tilly’s Smith said he doesn’t really view these things as costs so much as investments — pricy investments, to be sure, but investments made to improve performance and increase cohesion in the now-combined entity. 

“For example, in every combination we’ve done over 15 years, we purchase brand-new end user systems for everyone. You’d say, OK, if you do a combination with 1,000 people and computers cost $2,000 that is a big number. But from our perspective, it is about [providing] something new, something tangible, ‘Wow I joined this organization and now I get this new thing!’ That really resonates. But we don’t view it as a cost. We view it as if we had 2,000 people or 100 people or 20 people join the organization off the street, what would they get? They’d get a new computer. So it’s a difference in perspective,” he said. “We don’t view it as part of the transaction. That’s just the normal environment.” 

He raised a point that others raised too: In the end, while best practices involve the technology, they’re not so much about the technology itself but all the other things around it. 

“Best practices have very little to do with the actual technology; they more have to do with the approach, with the level of engagement, how you communicate, with the focus on how the other individuals you talk to are feeling. Because on the one hand maybe you can say not a lot will change, but on the other hand it’s easy for you to say that because you’re not going through the change. It’s being respectful and understanding,” he said. 

Continue Reading

Accounting

IAASB tweaks standards on working with outside experts

Published

on

The International Auditing and Assurance Standards Board is proposing to tailor some of its standards to align with recent additions to the International Ethics Standards Board for Accountants’ International Code of Ethics for Professional Accountants when it comes to using the work of an external expert.

The proposed narrow-scope amendments involve minor changes to several IAASB standards:

  • ISA 620, Using the Work of an Auditor’s Expert;
  • ISRE 2400 (Revised), Engagements to Review Historical Financial Statements;
  • ISAE 3000 (Revised), Assurance Engagements Other than Audits or Reviews of Historical Financial Information;
  • ISRS 4400 (Revised), Agreed-upon Procedures Engagements.

The IAASB is asking for comments via a digital response template that can be found on the IAASB website by July 24, 2025.

In December 2023, the IESBA approved an exposure draft for proposed revisions to the IESBA’s Code of Ethics related to using the work of an external expert. The proposals included three new sections to the Code of Ethics, including provisions for professional accountants in public practice; professional accountants in business and sustainability assurance practitioners. The IESBA approved the provisions on using the work of an external expert at its December 2024 meeting, establishing an ethical framework to guide accountants and sustainability assurance practitioners in evaluating whether an external expert has the necessary competence, capabilities and objectivity to use their work, as well as provisions on applying the Ethics Code’s conceptual framework when using the work of an outside expert.  

Continue Reading

Accounting

Tariffs will hit low-income Americans harder than richest, report says

Published

on

President Donald Trump’s tariffs would effectively cause a tax increase for low-income families that is more than three times higher than what wealthier Americans would pay, according to an analysis from the Institute on Taxation and Economic Policy.

The report from the progressive think tank outlined the outcomes for Americans of all backgrounds if the tariffs currently in effect remain in place next year. Those making $28,600 or less would have to spend 6.2% more of their income due to higher prices, while the richest Americans with income of at least $914,900 are expected to spend 1.7% more. Middle-income families making between $55,100 and $94,100 would pay 5% more of their earnings. 

Trump has imposed the steepest U.S. duties in more than a century, including a 145% tariff on many products from China, a 25% rate on most imports from Canada and Mexico, duties on some sectors such as steel and aluminum and a baseline 10% tariff on the rest of the country’s trading partners. He suspended higher, customized tariffs on most countries for 90 days.

Economists have warned that costs from tariff increases would ultimately be passed on to U.S. consumers. And while prices will rise for everyone, lower-income families are expected to lose a larger portion of their budgets because they tend to spend more of their earnings on goods, including food and other necessities, compared to wealthier individuals.

Food prices could rise by 2.6% in the short run due to tariffs, according to an estimate from the Yale Budget Lab. Among all goods impacted, consumers are expected to face the steepest price hikes for clothing at 64%, the report showed. 

The Yale Budget Lab projected that the tariffs would result in a loss of $4,700 a year on average for American households.

Continue Reading

Accounting

At Schellman, AI reshapes a firm’s staffing needs

Published

on

Artificial intelligence is just getting started in the accounting world, but it is already helping firms like technology specialist Schellman do more things with fewer people, allowing the firm to scale back hiring and reduce headcount in certain areas through natural attrition. 

Schellman CEO Avani Desai said there have definitely been some shifts in headcount at the Top 100 Firm, though she stressed it was nothing dramatic, as it mostly reflects natural attrition combined with being more selective with hiring. She said the firm has already made an internal decision to not reduce headcount in force, as that just indicates they didn’t hire properly the first time. 

“It hasn’t been about reducing roles but evolving how we do work, so there wasn’t one specific date where we ‘started’ the reduction. It’s been more case by case. We’ve held back on refilling certain roles when we saw opportunities to streamline, especially with the use of new technologies like AI,” she said. 

One area where the firm has found such opportunities has been in the testing of certain cybersecurity controls, particularly within the SOC framework. The firm examined all the controls it tests on the service side and asked which ones require human judgment or deep expertise. The answer was a lot of them. But for the ones that don’t, AI algorithms have been able to significantly lighten the load. 

“[If] we don’t refill a role, it’s because the need actually has changed, or the process has improved so significantly [that] the workload is lighter or shared across the smarter system. So that’s what’s happening,” said Desai. 

Outside of client services like SOC control testing and reporting, the firm has found efficiencies in administrative functions as well as certain internal operational processes. On the latter point, Desai noted that Schellman’s engineers, including the chief information officer, have been using AI to help develop code, which means they’re not relying as much on outside expertise on the internal service delivery side of things. There are still people in the development process, but their roles are changing: They’re writing less code, and doing more reviewing of code before it gets pushed into production, saving time and creating efficiencies. 

“The best way for me to say this is, to us, this has been intentional. We paused hiring in a few areas where we saw overlaps, where technology was really working,” said Desai.

However, even in an age awash with AI, Schellman acknowledges there are certain jobs that need a human, at least for now. For example, the firm does assessments for the FedRAMP program, which is needed for cloud service providers to contract with certain government agencies. These assessments, even in the most stable of times, can be long and complex engagements, to say nothing of the less predictable nature of the current government. As such, it does not make as much sense to reduce human staff in this area. 

“The way it is right now for us to do FedRAMP engagements, it’s a very manual process. There’s a lot of back and forth between us and a third party, the government, and we don’t see a lot of overall application or technology help… We’re in the federal space and you can imagine, [with] what’s going on right now, there’s a big changing market condition for clients and their pricing pressure,” said Desai. 

As Schellman reduces staff levels in some places, it is increasing them in others. Desai said the firm is actively hiring in certain areas. In particular, it’s adding staff in technical cybersecurity (e.g., penetration testers), the aforementioned FedRAMP engagements, AI assessment (in line with recently becoming an ISO 42001 certification body) and in some client-facing roles like marketing and sales. 

“So, to me, this isn’t about doing more with less … It’s about doing more of the right things with the right people,” said Desai. 

While these moves have resulted in savings, she said that was never really the point, so whatever the firm has saved from staffing efficiencies it has reinvested in its tech stack to build its service line further. When asked for an example, she said the firm would like to focus more on penetration testing by building a SaaS tool for it. While Schellman has a proof of concept developed, she noted it would take a lot of money and time to deploy a full solution — both of which the firm now has more of because of its efficiency moves. 

“What is the ‘why’ behind these decisions? The ‘why’ for us isn’t what I think you traditionally see, which is ‘We need to get profitability high. We need to have less people do more things.’ That’s not what it is like,” said Desai. “I want to be able to focus on quality. And the only way I think I can focus on quality is if my people are not focusing on things that don’t matter … I feel like I’m in a much better place because the smart people that I’ve hired are working on the riskiest and most complicated things.”

Continue Reading

Trending