Welcome to Venture in Security! Before we begin, do me a favor and make sure you hit the “Subscribe” button. Subscriptions let me know that you care and keep me motivated to write more. Thanks folks!

As many of you know, aside from writing the Venture in Security blog, from time to time I contribute articles to different media. I am off this week, but to keep the weekly blog cadence, I would like to share some of the articles published in different media this year. 

These contributions are grouped across four broad categories:

• State of cybersecurity & industry trends

• Product management, go-to-market strategies & product-led growth in cybersecurity

• Career growth

• Other

State of cybersecurity & industry trends

Why data gravity is helping cloud providers become cybersecurity companies 

[ Venture Beat ] 

Discussing the concept of the data gravity effect and looking at ways in which cloud providers are turning into cybersecurity companies. 

AI for security is here. Now we need security for AI

[ Venture Beat ] 

Despite all the attention AI received in the industry, the vast majority of the discussions have been focused on how advances in AI are going to impact defensive and offensive security capabilities. In this piece, I look at how we are securing the AI workloads themselves.

The industrywide consequences of making security products inaccessible

[ Dark Reading ] 

Most security vendors don't make their products easy to access, requiring prospects to attend a series of demos, sign multiyear contracts, and commit to a minimum spend, a minimum number of endpoints, or some combination of these. This behavior has several far-reaching consequences.

Cybersecurity maturity: 3 types of companies and what this means for the industry

[ Frankly Speaking ] 

Some organizations are talking about advanced persistent threats (APTs), building custom security tools and tailored coverage in-house, while others are outright denying that security is something they need to worry about. I am looking at different kinds of companies and the implications of the way they approach security. 

How security leaders should approach cybersecurity startups

[ Dark Reading ] 

Security leaders are tired of aggressive sales tactics, and cybersecurity companies must change the way they go about acquiring customers. Endless cold calling and spam are not Okay. Thankfully, more and more people are becoming vocal about this problem, so I am optimistic it will get better over time. 

The topic that doesn't get any attention, however, is how security leaders can make the lives of cybersecurity vendors easier. In this piece, I look at how CISOs can help make cybersecurity a better place. 

Diversity in cybersecurity and why our inclusion efforts will fail until we do this one thing

[ Hackernoon ]

A brief look at the problem of diversity of cybersecurity and explaining why we need to start hearing about security from individuals with different backgrounds, not just CISOs, VCs, and founders building new products. 

Product management, go-to-market strategies & product-led growth in cybersecurity

Analyzing 3 cybersecurity customer segments: is PLG right for your business?

[ Open View ] 

PLG can work in cybersecurity, but there are nuances to consider across different customer segments. Here, I explore three types of cybersecurity customers—people (B2C), SMBs (B2B), and enterprises (also B2B), and investigate what product-led growth approaches might look like in these segments.

Time to trust: Questions cybersecurity customers ask and how to answer them 

[ TechCrunch ] 

Looking at the concept of “time to trust” that is critical for product adoption in cybersecurity, and providing tactical ways in which security companies can overcome the initial challenges of customer acquisition.

6 common challenges facing cybersecurity teams and how to overcome them

[ TechCrunch ] 

Discussing the challenges of product leaders and startup founders trying to innovate in cybersecurity and offering advice about building security products.

3 key metrics for cybersecurity product managers

[ TechCrunch ] 

Looking at how metrics product managers are tempted to track and report on may not be what they seem, and what to track instead.

Career growth

Four-step strategy for CISOs to avoid overload: focus on what matters

[ Forbes ] 

Security providers are often causing additional stress instead of offering relief. In this piece, I am offering several strategies security leaders can use to focus on what matters to them, not to vendors. 

Impact beyond product: 3 ways product leaders can shape the tech ecosystem 

[ Forbes ] 

Talking about the impact product leaders can achieve outside of their work on the industry and the ecosystem levels. 

Why security practitioners should understand their business

[ Dark Reading ] 

The sooner security practitioners become proactive in understanding the flip side of the organizations they protect, the better they'll be at their jobs.

Other

The illusion of security and safety

[ Resilient Cyber ] 

A casual reflection on the topics of safety, societal agreements, and cybersecurity. 

If you like my blog, please subscribe & share it with your friends. I do this in my free time, so seeing the readership grow helps me to stay motivated and write more. I don’t send anything except my writing and don’t sell your data to anyone as I have better stuff to do. If you are a security practitioner, check out & spread the word about the VIS Angel Syndicate. If your company is interested in sponsoring Venture in Security, check out Sponsorships. Thank you!

Share Venture in Security

Share