At this year’s LPGP Connect CFO/COO Private Equity conference in London, cybersecurity wasn’t just a topic—it was the topic.
While Chatham House rules apply (so we’ve omitted names), the messages were loud and clear:
“There are two types of firms—those who’ve been hacked and know it, and those who’ve been hacked and don’t.”
“60% of cyber incidents come through third parties and supply chains.”
“If you’re confident in your security, that confidence may be your biggest vulnerability.”
“Cybersecurity has become the most important and relevant part of our ODD pack.”
“DORA isn’t kidding. If you’re regulated and breached, you have four hours to report it—or face sanctions.”
The takeaways:
- Hackers and regulators aren’t waiting around.
- Cyber risk now shapes valuations, accelerates or stalls deals, and signals operational maturity.
- Cyber is an ongoing effort, not an annual checkbox.
- Executive behavior sets the tone, but also the risk.
- Third-party exposure is your exposure.
How do you turn blind spots into competitive advantages?
