The Cyber Security Investment Boom Continues

Despite big economic problems elsewhere, 2020 and 2021 were very good years for the cyber security industry, with 178 strategic merger and acquisition (M&A) deals in 2020, and 223 deals in the first three quarters of 2021 alone. 

Venture capital financing for cyber security firms has also been very high, resulting in a number of 'unicorns' - a company with an investment valuation of more than one billion dollars

According to Progress Partners’ Market Report: Cybersecurity Q1 2022, M&A activity leapt from $27.5 billion in 2020 to $70.4 billion in 2021 and by the end of the first quarter of 2022, it had reached almost $27 billion, on track to exceed previous years.

In the first quarter of 2022 has been remarkable for the high number of cyber security M&A transactions and right now deals are mostly being driven by large corporations in telecoms, aerospace and energy acquiring cyber security technology to strengthen their core operations. 

Larger firms are looking to expand their capabilities. 

  • Recorded Future’s recent acquisition of SecurityTrails is one example, adding attack surface monitoring technology to Recorded Future’s existing capabilities.

However,  the latest M&A figures suggest  a levelling  off for the full year 2022 and sources suggest that while M&A activity will continue, access to VC financing may become more difficult as investors respond to a number of risk factors: 

  • The COVID-induced work from home (WFH) and the new hybrid working paradigm have dramatically increased companies’ threat surfaces.
  • Governments worldwide are applying pressure through increased mandatory cyber security regulations.

While demand for cyber security products will remain high and the finance to support new and existing security companies is available, the pace of investment funding may slow over the next few months, due to these perceived risk factors.

The implication is that the money is still available, but that it will be harder for the new and unproven startups to access it because the investors are becoming more risk-averse.

Part of VC investors’ caution might  be because there has been too much money chasing a simple investment formula - buy private companies, to take them public and sell them to others - risking 'dumb deals'. The rest of 2022, activity is more likely to focus on M&A that consolidates proven technologies rather than betting heavily on new ones. Getting startup funding will become more difficult for the rest of 2022.

As new cyber security threats emerge, new companies with new technologies will be created to combat those threats. The fundamental growth in the sector will ensure that startups will be funded and incumbent players will continue to acquire fresh security technologies and talent via M&A. 

As things stand after Q1 2022, M&A activity will continue, but investment growth financing will be at a more cautious level. 

Progress Partners:   ARN      Forbes:    Security Week:    TechAdvisor:   Dark Reading:  

You Might Also Read: 

Software Industry Mergers and Acquisitions 2022:

 

« Special Measures To Deal With Quantum Technology
Some Apps Come Loaded With Malware »

CyberSecurity Jobsite
Perimeter 81

Directory of Suppliers

UK Cyber Week Expo & Conference

UK Cyber Week Expo & Conference

Award-winning event organiser ROAR B2B announces the launch of UK Cyber Week and its inaugural event on 4 and 5 April 2023 at the Business Design Centre, London.

Authentic8

Authentic8

Authentic8 transforms how organizations secure and control the use of the web with Silo, its patented cloud browser.

NordLayer

NordLayer

NordLayer is an adaptive network access security solution for modern businesses — from the world’s most trusted cybersecurity brand, Nord Security. 

DigitalStakeout

DigitalStakeout

DigitalStakeout enables cyber security professionals to reduce cyber risk to their organization with proactive security solutions, providing immediate improvement in security posture and ROI.

Cyber Security Supplier Directory

Cyber Security Supplier Directory

Our Supplier Directory lists 6,000+ specialist cyber security service providers in 128 countries worldwide. IS YOUR ORGANISATION LISTED?

rPeople Staffing

rPeople Staffing

rPeople provides direct placement in all areas of your organization, including and specializing in Technical and Executive hiring.

Brainwave GRC

Brainwave GRC

Brainwave GRC is a leading European software provider focused on Identity Analytics and intelligence to strengthen IT security and compliance.

NopSec

NopSec

NopSec provides automated IT security control measurement and risk remediation solutions to help businesses protect their IT environments from security breaches.

Digital Ship

Digital Ship

Digital Ship provides news, information, conferences and events focused on digital ship systems, information technology and security relating to maritime operations.

Yelbridges

Yelbridges

Yelbridges is your reliable partner in all fields of IT-Security, from developing of Security Policies and Guidelines to the design and implementation of secure processes.

Highland Capital Partners

Highland Capital Partners

Highland Capital Partners is an early stage venture capital firm focused on category-defining businesses in consumer and enterprise technology, including cybersecurity.

Noventiq

Noventiq

Noventiq (the brandname of Softline Holding plc) is a leading global solutions and services provider in digital transformation and cybersecurity.

Mias TSCM

Mias TSCM

Mias TSCM provides Cyber TSCM (Technical Surveillance Countermeasures) bug sweeping services.

Illuma Labs

Illuma Labs

Illuma Labs delivers real-time voice authentication and fraud prevention solutions.

Argentra

Argentra

Argentra is a specialist engineering company, we have years of experience developing custom security software and providing security risk consulting.

Saepio Solutions

Saepio Solutions

Saepio promote an all-encompassing approach to cybersecurity, ensuring the appropriate balance of budget and resource across Policy, Product and People.

Communicate Technology

Communicate Technology

Communicate Technology are IT, telecoms and cyber-security specialists, keeping over 500 businesses and 50,000 users connected and secure across the UK.

OSI Security

OSI Security

OSI Security's primary services include penetration testing, security auditing, web application security testing and risk management.

RankedRight

RankedRight

RankedRight empowers security teams to take immediate action on their most critical risks.

Zenity

Zenity

Zenity is the first and only security governance platform for low-code/no-code applications.

MetaWeb Ventures

MetaWeb Ventures

MetaWeb Ventures is a global venture capital firm focused on pre-seed and seed investments in crypto start-ups.