How Do Next Generation Cyber Companies Stay Relevant Given Rapidly Emerging Technology?
We have been assessing the next generation of cyber companies – particularly at Black Hat and DEFCON. Is it just us or does there seem to be an oversaturation of undifferentiated products and services hitting the cyber security market? Where are the discriminators? Do these offerings even scale?
We think if this next generation intends to command valuation levels akin to or above predecessors, current business plans need to be sharpened for the following:
- Connection to prime commercial / federal technology provider roadmaps
While most technology roadmaps are company proprietary or classified, there are some general characteristics of emerging technologies that I am aware of that can be discussed in this forum. For example, we are highly interested in chaos based systems (not limited to crypto), quantum leaps in transportation in routing, and quantum leaps in data rate processing.
- Understanding the threat base
Classification continues to be an issue for situational awareness of the threat environment. However, we have recently seen some best practices around this issue such as acquiring / partnering with vendors that are closest to the “virtual battlefield” (e.g. Intel / McAfee), garnering footprint inside network / security operation centers, and broadening customer portfolio to various industries and countries.
- Prioritize value enhancing IRAD plans
Executing on the above two will drive focused requirements for internal investment. Concurrently, cross pollinating lessons learned from exposure to diverse sector verticals should be a significant input in any capability gap analysis. There are tremendous challenges that need to be addressed such as affordability, materials, design productivity, and testing.
Bottom line, successful cyber companies need to be at a generational leap ahead to meet vulnerability assessment and exploitation demands of emerging technology.