Let's secure this bread
I hope you had a great weekend and are gearing up for Halloween activities today!
This is the official Spooky Edition™️ 👻 , so send in your Halloween pics from this week and I'll feature some of the best ones in next week's issue. Here's one of mine:
In this week's issue:
More earnings reports
The business of cyber content is booming
A big shoutout goes out to my friends over at The CyberWire on their recent merger (see more below)!
The CyberWire is a news staple for much of the cybersecurity industry and workforce development, and I have no doubt this new merger is only going to increase the value of the content they produce.
Per the official press release:
Expect to see big things on the talent development and content front.
Another notable event from last week was the acquisition of a security conference (I made a new category for this) called Cyber Security Summit. You can see more below, but this acquisition combined with N2K Networks shows just how powerful the business of cyber content is for industry.
Speaking of the industry, last week saw three publicly traded cybersecurity companies share their earning reports.
Tenable ($TENB), Checkpoint ($CHKP), and Juniper ($JNPR) all beat their Q3 earnings expectations. Focuses on growth to partnership ecosystems, achieving a higher lifetime value (LTV) per customer, and shareholder dividend growth played roles across all of these reports.
The stalwarts once again showing consistent and reliable growth in this industry despite macro economic factors being headwinds.
Onward to this week's issue.
Subscribe to Security, Funded
Know what and who is moving the cybersecurity.
Live Q&A with the authors of Black Hat GraphQLGet answers to your questionsDolev Farhi & Nick Aleks, authors of Black Hat GraphQL are joining experts from ThreatX, API protection platform, for a 30-minute Q&A on Nov. 10th at 10 am PT / 1 pm ET. We will be interacting with our audience to answer questions related to:* Attack techniques on REST vs GraphQL* Building defense for modern attacks* Tactics to level up your appsec programRegister now to save your spot
📊 Industry News
💰 Funding Summary
15 companies raised $239.3M across 15 unique product categories
5 companies were acquired or had a merger event across 5 unique product categories
🧩 Funding by Product Category
$120.0M for Secure Access Service Edge (SASE)
$25.0M for SaaS Security
$22.0M for IT Asset Management (ITAM)
$20.0M for Secure Collaboration and Messaging
$10.0M for Cloud Native Application Protection Platform (CNAPP)
$9.2M for Extended Detection and Response (XDR)
$7.0M for Software Supply Chain Security
$6.9M for Managed Services Provider (MSP)
$5.4M for Cybersecurity News and Media
$4.8M for Threat Detection and Response (TDR)
$4.0M for Application Security
$3.0M for Security Awareness
$2.0M for Data Protection
An undisclosed amount for Infrastructure as Code (IaC) Security
An undisclosed amount for Blockchain Security
🏢 Funding By Company
🤝 Mergers & Acquisitions
🔐 Secure The Job
If you're looking for new opportunities (actively or passively), I've got two ways to help:
Return on Security Job Board - Browse the jobs I curate each week and apply for what matches your interests.
Return on Security Talent Collective - Apply to my talent collective to get personally matched with high-growth, high-upside opportunities (if you refer one (1) person to this newsletter you get access automatically!)
Are you hiring? Post a role and request access to start meeting world class candidates open to new opportunities. Learn more or request access here.
📚 Great Reads
Top 10 resources about the business of cybersecurity - A list of resources for founders, product managers, investors, industry analysts, reporters, and others interested in the business side of cybersecurity
The State of Crypto Security - Hackers have stolen more than $2B from crypto applications this year. The problem will only get worse as the crypto ecosystem grows and attracts more malicious actors. Something has to change. It’s time to take a step back, reflect on past mistakes, and change how we handle security in this industry.
Create A Risk Register - A risk register is just a fancy cybersecurity term for “a list of things that introduce risk to the company.”
Have questions, comments, or feedback about this issue? I'd love to hear from you. Reach out on Twitter or reply directly to the newsletter version of this issue.
Thanks for reading and see you again next time!
Whenever you're ready, there are a few ways I can help you: