Tag Archives: DSIT

From Founder to CEO: Lessons in Leadership, Growth, and Resilience

For any startup founder, the journey from idea to execution is filled with challenges. However, the biggest transformation isn’t just in scaling a business, it’s in evolving from a founder into a CEO.

Continue reading

Exit Strategy 5: Timing Your Exit: How to Align Business Readiness with Market Opportunities

Timing is everything when it comes to selling a business. Exit too early, and you might leave value on the table; wait too long, and you risk market shifts or internal challenges diminishing your business’s worth. The right timing strikes a balance between your business’s readiness, market conditions, and shareholder objectives.

Continue reading

Expanding to the US: Lessons from Internationalization Experts

International expansion is a significant milestone for any startup, but it comes with its own set of complexities. In a recent discussion led by John Kinson, an experienced consultant specializing in global market entry and startup scaling, founders and executives explored the realities of expanding into the US. The conversation covered market readiness, legal and regulatory considerations, hiring strategies, and the cultural nuances that can make or break a company’s success overseas.

Continue reading

Disability Inclusion in the Workplace: Key Takeaways from Disability Rights UK’s Talk

Disability inclusion is a vital yet often misunderstood aspect of workplace diversity. In a recent session hosted at Plexal, Kamran Mallick, CEO of Disability Rights UK, provided valuable insights into what it means to create a truly inclusive work environment. His talk covered the social model of disability, legal obligations under the Equality Act, workplace adjustments, and practical steps businesses can take to foster inclusivity.

Continue reading

Scaling a Cyber Intelligence Business: Lessons from Crisp’s Growth Journey with John-Orr Hanna

Scaling a company from a small team to a global market leader is a challenge that requires smart hiring, a robust governance model, and a deep understanding of customer needs. In a recent Cyber Runway Founders Fireside, John-Orr Hanna, former Chief Intelligence Officer at Crisp, shared his experience of growing the company from a handful of analysts to over 140 employees and achieving a 15x business expansion in four years.

Continue reading

Exit Strategy 4: Getting Ready to Sell: A Practical Guide to Due Diligence

Selling your business is one of the most significant milestones in an entrepreneur’s journey. However, even the most attractive businesses can falter during due diligence if they are not properly prepared. This stage is where buyers scrutinize every aspect of your business to evaluate risks, verify claims, and confirm the value they’re willing to pay.

Continue reading

Scaling Success: The TryHackMe Journey with Co-founder Ashu Savani

Building a successful startup requires more than just a great idea, it takes execution, adaptability, and an unwavering commitment to understanding your customers. This was the key takeaway from the recent Cyber Runway Founders Fireside session with Ashu Savani, co-founder of TryHackMe, a cybersecurity training platform that has grown into a 20-million-dollar revenue business without any external investment.

Continue reading

Exit Strategy 3: What Makes Your Business Valuable? A Guide to Valuation Drivers

When it comes to planning an exit, understanding your business’s value, and the factors that drive it, is essential. Whether you’re preparing for a trade sale, IPO, or private equity investment, the right focus on valuation drivers can significantly enhance your outcomes. In this article, we explore the key components of valuation, strategies to improve them, and common pitfalls to avoid.

Continue reading

Building and Maintaining Momentum in B2B Sales: A Strategic Approach

B2B sales is challenging, now more than ever. Tightening budgets, economic uncertainty, and an increasingly competitive landscape mean sales teams must be more strategic than ever in how they generate and sustain momentum. In a recent Cyber Runway session, Tom Glason, CEO of ScaleWise, shared insights on optimizing B2B sales strategies. With over 20 years of experience in B2B tech and leadership roles across startups and scaleups, Tom provided a roadmap for improving sales processes, from effective discovery calls to engaging product demos.

Continue reading

Neurodiversity and Cyber: Understanding One in Five of Your Industry with Mary Welton of Plexal

Neurodiversity is a vital consideration in cybersecurity, with one in five professionals in the industry identifying as neurodivergent. This article, based on a Cyber Runway: Scale session led by a Plexal Innovation Associate, explores the importance of neurodiversity, common misconceptions, and practical ways to support neurodivergent employees while maximizing their unique strengths.

Continue reading

Cyber Runway: Scale 4.0 – Key Updates and Opportunities for Startups – New Year Briefing Notes

This article summarizes key announcements and discussions from the latest Cyber Runway: Scale session, including updates on the new Founders Forum, upcoming trade missions, regional events, and opportunities for startups to engage with investors and government stakeholders.

Continue reading

Exit Strategy 2: Choosing the Right Exit Type: Trade Sale, IPO, or Private Equity?

When planning your business exit, selecting the right type of transaction is one of the most critical decisions you’ll make. Each exit type comes with its opportunities, challenges, and suitability based on your goals and the stage of your business. In this article, we’ll explore the key exit types, trade sale, Initial Public Offering (IPO), private equity (PE), and management buyout (MBO), and help you identify which might be the best fit for your business.

Continue reading

Exit Strategy 1: Planning Your Business Exit: The Roadmap to Success

Every business journey eventually leads to a crossroads: the decision to continue growing, transition ownership, or step away entirely. An exit strategy is your blueprint for navigating this critical phase, allowing you to realize the value of your hard work while setting the stage for future success, whether yours or the business’s.

Continue reading

Cyber Governance at a Crossroads: Responding to DSIT’s Consultation

This framing article summarises a set of responses to DSIT’s Cyber Governance Code of Practice consultation in Jan/Feb 2024. It highlights practitioner and institutional submissions, alongside thematic deep dives on law, assurance, incentives, and professionalism. The message: DSIT asked the right questions, but the hardest answers were still missing.

Continue reading

Professionalism and Accountability: Why Cyber Needs Recognition like Law and Engineering

This article argues that DSIT’s Cyber Governance Code of Practice must embed professional recognition for cyber experts, just as directors rely on lawyers, accountants, and engineers. Without a register of recognised professionals, directors risk being accountable without credible support.

Continue reading

Incentives, Not Just Obligations: Driving Real Uptake of Cyber Governance

This article argues that obligations alone will not drive the adoption of DSIT’s Cyber Governance Code of Practice. To succeed, the Code must be backed by incentives — tax relief, insurance benefits, procurement levers, and reputational recognition — that make governance valuable to boards. Obligations can enforce compliance; incentives will create commitment.

Continue reading

From Cyber Essentials to Corporate Governance: Raising the Bar

Cyber Essentials has value as a baseline, but reaches only 0.3% of UK organisations and says little about governance. This article argues that DSIT’s Cyber Governance Code of Practice must raise the bar, from compliance to accountability, from self-attestation to credible assurance, and from one-off certificates to continuous governance. Cyber Essentials is the floor; governance must be the ceiling.

Continue reading

Why Self-Attestation Doesn’t Work: Lessons for the DSIT Code

This article argues that self-attestation has failed as a credible assurance mechanism, citing Cyber Essentials’ low uptake and ISO 27001’s limits. It warns that if DSIT builds the Cyber Governance Code of Practice on self-assessment, it will fail. To succeed, the Code must mandate independent, accredited assurance that directors, investors, and regulators can trust.

Continue reading

Directors and Cyber Responsibility: Towards a New Company Law

This article examines DSIT’s 2024 proposal to embed cyber responsibility into company law. It argues that directors should carry legal duties for cyber resilience, as they already do for finance and health and safety — but only if those duties are proportionate, professionalised, and practical. The consultation did not change the law, but the direction of travel is unmistakable.

Continue reading

From Practitioner to Professional Body: The IET Response on Cyber Governance

This article examines the IET’s joint response to DSIT’s 2024 consultation on the Cyber Governance Code of Practice. Building on my practitioner-led analysis, the IET added institutional weight: emphasising professional recognition, proportionality for SMEs, broader engagement, and integration into training. It shows how practitioner insight and professional consensus can work together to shape policy.

Continue reading