by Jamie Lewis, Venture Partner

Few business leaders would argue against the value of making data-driven decisions. …


by Chenxi Wang, Ph.D. General Partner

As an investor and a technology enthusiast, I get excited when I encounter a novel viewpoint, a new way of solving a problem, or simply a new treatment to a challenge. But I have to say that it is a rare occurrence when someone solves a compelling problem, but at the same time brings fundamental innovation via its underlying technology.

JupiterOne is one such case.

I got to know Erkang Zheng, the founder of JupiterOne quite some time ago, when both of us were working in a completely different capacity.

Image for post
Image for post

Erkang was the CISO of LifeOmic, a data service cloud that provides many categories of health data that is central to patient care. Naturally, with these kinds of services, security, privacy, and compliance are of utmost importance. …


by Jamie Lewis, Venture Partner

In part one of my conversation with Malcolm Harkins, we discussed the CISO’s role as a “choice architect.” In part two, we discuss how CISOs misperceive risk and the innovation necessary to move security “to the left,” enabling security and privacy by design. (With Harkins’s approval, I’ve edited the questions and answers for brevity and clarity.)

Image for post
Image for post

The Misperception of Risk

Jamie Lewis (JL): [In part one of this conversation], we discussed the need for CISOs to expand their scope. As the security scope broadens, what’s the biggest risk CISOs face?

Malcolm Harkins (ML): The most significant vulnerability we face is the misperception of risk, which is driven by economics and psychology. The economic side is my P&L, my budget, all those things that drive a level of bias toward the goals I have, and how my performance is measured. Like when Ford shipped the Pinto, it had a patent on a part for a safer gas tank that would have cost $11. But they were facing competition from Volkswagen in the low-end car market, so they brought the Pinto to the market faster than any other car they had built. They didn’t want to lose the opportunity, so the economics were creating a strong bias. And we all know the results of that. The other aspect of this is psychology, and it can manifest in different ways. One is the “shiny bauble” syndrome. When people perceive a benefit in something or an opportunity in it, or they get enamored with it, they psychologically discount the risks. …

About

Rain Capital

Rain Capital is a cybersecurity venture fund based in the San Francisco bay area. A women-led and -managed fund, Rain invests in disruptive security companies.

Get the Medium app

A button that says 'Download on the App Store', and if clicked it will lead you to the iOS App store
A button that says 'Get it on, Google Play', and if clicked it will lead you to the Google Play store