We are not at RSA. Here's why.
Anshu Sharma
Co-founder & CEO Skyflow, securing the modern AI data stack with data privacy vault
Just a few weeks ago, Skyflow raised $30M led by Khosla Ventures. Most startups end up with big booths and even bigger billboards at RSA Conference when they raise that kind of money. But we chose a different path. Here's why.
Cybersecurity is a $200B failure, and growing.
If you have been following the news, every year the size of the cybersecurity industry keeps growing with more unicorns, more IPOs, and more spend. But what are we really getting in exchange?
There's more data breaches than ever. Our social security numbers, our phone numbers, our email addresses are all over the internet. I could belabor the point by pointing out the Change Healthcare shutdown where entire health systems didn't get paid, or T-Mobile losing 10s of millions of PII - again - literally a year after an equally bad breach.
Meanwhile IDC reports that cybersecurity is one of the fastest growing areas of spend for most companies.
Cybersecurity Industry is Failing Us.
The cybersecurity industry is built around selling more tools - often selling you multiple products to solve just one problem. Think about something like email phishing attacks. How many products are you supposed to buy to prevent a phishing attack?
The same goes for every other attack vector, every layer of the tech stack - network, data, API, storage.
Are these 100s of products really helping keep our data safer? Reducing ransomware attacks?
Every metric points the other way.
领英推荐
PC or iPhone: Security by Architecting Different
If you think about where we were 15 years ago with our work computers - millions of PCs with lots of security holes. While companies spent billions of dollars to buy more and more tools to make Windows (NT, 2000) safer - it didn't really solve the security challenges.
People moved the servers to Linux/Unix architecture, and the devices in our hands got safer when we started using iPhones. In short, we had to think fundamentally differently about OS security.
PII is Different. Isolate, Protect, Govern.
At Skyflow, we have embarked on a mission to solve one problem: how do we help companies that need to collect and use sensitive personal data (PII)?
In stead of selling one more tool to help you be 10% more compliant, 10% more safer - we decided to be inspired by what happened in Identity (isolate and protect passwords - see Okta/Auth0), Secrets (isolate and protect secrets - see HashiCorp, AWS Secrets Manager).
It is our core belief that most cybersecurity tools - even from so-called platform companies - are just band-aids.
We need to fundamentally think different. We are solving PII security by thinking different.
NIST and the leading governments globally are asking the software industry to step up and build more secure products by design - by architecture and by engineering.
PS: If you are visiting SF for RSA, and want to get a briefing on thinking different about PII - just email me at ceo at skyflow dot com.
Digital Business Expert
10 个月Succinct: “It is our core belief that most cybersecurity tools - even from so-called platform companies - are just band-aids”
Founder and Chairman of Persistent Systems
10 个月Good points, but you don't answer the question you asked -- why are you not at RSA? You could do everything you said and also be at RSA.
Anshu Sharma Great point about Cybersecurity effectiveness and the need to rethink old architectures. The mental model of a privacy vault I have is of the RBI mandate for companies to tokenize credit card information - did I get that right? I think that is a great initiative and if it can be extended to all personal data, that would be a great leap for businesses and customers.
In solidarity with you, I’ve decided to not have a booth at RSA as well.