CRA consultants focus on six aspects of cybersecurity: due diligence (pre- and post-acquisition threat assessments), IR (from initial forensics to post-incident reviews), Cyber Insurance claims (including settlements and expert testimony), strategic advisory services, software licensing compliance, and eDiscovery.