Post #53: We just don’t know what’s out there
Perhaps it’s rather scary when you hear the Chief Product Officer of a large cybersecurity business make the above observation. However, it’s also a reflection of the complex and ever-changing landscape. We attended the keynote presentation at the Qualys Security Conference in London last week in order to understand better the profound impact that digital transformation is having upon the security industry. In terms of what we learned:
1: Every business is becoming an IT company. This might sound like hyperbole, but the reality is that almost all organisations are using more IT in their business practices. Think about the ease, for example, of setting up a bank account online now versus the historic process of having to visit a branch and meet the manager. As Sumedh Thakar of Qualys put it, businesses “want to automate everything.”
2: Increased automation means increased challenges: As businesses expand their digital footprints, so their ‘surface area’ or ‘perimeter’ expands too. Put another way, as more ‘things’ (such as mobile devices or, say, handheld scanners in a factory) get connected and go online, so potential cybersecurity risks proportionately expand. This phenomenon is what provoked the original observation of not knowing what’s out there.
3: Cyberattacks are going to happen: Consider that some $66bn was spent on cybersecurity last year (per Statista) yet it still yields ineffective defences. Just think about the number of high-profile businesses such as the likes of British Airways and Facebook that have suffered breaches in the past years, beyond all the smaller, lower-profile names too. Given that attacks will happen, the correct approach – according to Qualys – is for businesses to seek to minimise the time needed to remediate the situation. In other words, the quicker problems are dealt with, the better. Machine learning outcomes “won’t solve hunger or world peace” (per Qualys) but they can reduce remediation time.
4: “Security is a cost of doing business.” Notwithstanding the vested interest of any cybersecurity company in making this observation, it remains abundantly self-evident to us that businesses which fail to invest in effective cybersecurity solutions run the risk of seeing their organisational reputations undermined. As we have observed before, data has little value unless it is stored, secured and analysed effectively. Expect to see more in terms of integrated cybersecurity solutions that offer vulnerability management, detection and response offerings.
The document is provided for information purposes only and does not constitute investment advice or any recommendation to buy, or sell or otherwise transact in any investments. The document is not intended to be construed as investment research. The contents of this document are based upon sources of information which Heptagon Capital LLP believes to be reliable. However, except to the extent required by applicable law or regulations, no guarantee, warranty or representation (express or implied) is given as to the accuracy or completeness of this document or its contents and, Heptagon Capital LLP, its affiliate companies and its members, officers, employees, agents and advisors do not accept any liability or responsibility in respect of the information or any views expressed herein. Opinions expressed whether in general or in both on the performance of individual investments and in a wider economic context represent the views of the contributor at the time of preparation. Where this document provides forward-looking statements which are based on relevant reports, current opinions, expectations and projections, actual results could differ materially from those anticipated in such statements. All opinions and estimates included in the document are subject to change without notice and Heptagon Capital LLP is under no obligation to update or revise information contained in the document. Furthermore, Heptagon Capital LLP disclaims any liability for any loss, damage, costs or expenses (including direct, indirect, special and consequential) howsoever arising which any person may suffer or incur as a result of viewing or utilising any information included in this document.
The document is protected by copyright. The use of any trademarks and logos displayed in the document without Heptagon Capital LLP’s prior written consent is strictly prohibited. Information in the document must not be published or redistributed without Heptagon Capital LLP’s prior written consent.
Heptagon Capital LLP, 63 Brook Street, Mayfair, London W1K 4HS
tel +44 20 7070 1800
email [email protected]
Partnership No: OC307355 Registered in England and Wales Authorised & Regulated by the Financial Conduct Authority
Heptagon Capital Limited is licenced to conduct investment services by the Malta Financial Services Authority.
GET THE UPDATES
Sign up to our monthly email newsletter for the latest fund updates, webcasts and insights.