INTEGRATIVE INSIGHTS
ON EMERGING OPPORTUNITIES

Integrative research means our extensive company research informs every thesis and perspective. The result is deep industry knowledge, expertise, and trend insights that yield valuable results for our partners and clients.

Home > Integrative Research > Technology / SAAS > Preview
About the Authors:
Howard Smith
Managing Director
312-258-7117
hsmith@firstanalysis.com
Howard Smith has nearly three decades of experience at First Analysis, working with entrepreneurs as an investor and as an advisor on growth transactions to help build leading technology businesses. He leads the firm's work in the Internet of Things, cybersecurity and internet infrastructure sectors. He also built the firm's historical franchises in call centers and computer telephony. His thought-leading research in these areas has been cited for excellence by the Wall Street Journal and other publications. He supports First Analysis' investments in EdgeIQ, Fortress Information Security, ObservIQ, Tracer and VisiQuate. Prior to joining First Analysis in 1994, he was a senior tax consultant with Arthur Andersen & Co. He earned an MBA with honors from the University of Chicago and a bachelor's degree in accounting with highest honors from the University of Illinois at Urbana-Champaign. He is a certified public accountant.
Liam Moran
Senior Analyst
312-258-7197
lmoran@firstanalysis.com
Liam Moran is a senior analyst with First Analysis. Prior to joining First Analysis in 2020, he was in the executive development program with Macy's, where he was responsible for managing the financial modeling surrounding Macy's $3 billion asset-based loan, capital project valuations, and corporate forecasting. Liam graduated from Kenyon College with a bachelor’s degree in economics and a concentration in integrated program in humane studies. He was a four-year member of the Kenyon varsity swimming team.
First Analysis Cybersecurity Team
Howard Smith
Managing Director
312-258-7117
hsmith@firstanalysis.com
Matthew Nicklin
Managing Director
312-258-7181
mnicklin@firstanalysis.com
Liam Moran
Senior Analyst
312-258-7197
lmoran@firstanalysis.com
First Analysis Quarterly Insights
Cybersecurity
RSA 2023 and Q2 highlights: Key insights and takeaways
July 5, 2023
  • We present our key takeaways from the 2023 RSA cybersecurity conference and our follow-up meetings and conversations during the quarter.
  • AI, which has been used in cybersecurity for years, was a hot topic, but we were surprised to hear many attendees focusing on the challenges of using AI in cybersecurity.
  • Generative AI in cybersecurity remains at an early stage, but attendees identified some areas where it is likely to be most useful in the near term.
  • Expanding enterprise attack surfaces, increasing complexity, and expanding purviews for CISOs are all escalating cybersecurity challenges despite growing cybersecurity budgets.
  • The worsening cybersecurity talent shortage is pushing enterprises to continue consolidating their cybersecurity solutions with fewer vendors and increase their use of managed cybersecurity services.

TABLE OF CONTENTS

AI use promising, but comes with challenges

Generative AI still early in adoption for cybersecurity

Expanding attack surface and greater complexity keep security top of mind

Cybersecurity budgets continue to grow...

...but so does budget pressure due to expanding scope

Worsening talent shortage requires more vendor consolidation and managed cybersecurity services

Still an exceptionally fertile market

Cybersecurity index near one-year high

Cybersecurity M&A: Notable transactions include Armorblox, Absolute Software

Cybersecurity private placements: Notable transactions include Blackpoint, CyberQP, and NetRise

AI use promising, but comes with challenges

Artificial intelligence (AI) was a hot topic at RSA, as it has been in many technology areas this year. The promise of AI in cybersecurity is well known, and AI-based cybersecurity solutions have long existed. For example, AI-based cybersecurity solutions use AI to establish baselines of normal data traffic and user behavior that they can use to detect anomalies indicating insider threats, account compromises and unauthorized activities. By continuously monitoring and analyzing traffic and user behavior, AI can identify early warnings of breaches and generate alerts to potential malicious activities.

The aspect of AI that caught our attention this year was the number of conversations we had that focused on challenges of using AI in cybersecurity. One example is that AI systems create a high level of noise, or false positives. While AI-based solutions can find novel threats that signature-based solutions cannot, they also tend to flag many benign anomalies, meaning only a fraction of their alerts are relevant and actionable for cybersecurity analysts. To address this, these AI-based systems are being paired with non-AI based systems to reduce the workloads they create and make them more practical to implement.

©2024 by First Analysis Corporation.
One South Wacker Drive
  ·  
Suite 3900
  ·  
Chicago, IL 60606
  ·  
312-258-1400