# Choosing your wave

By [Doug Lane](https://paragraph.com/@axalane) · 2022-03-30

---

The first narrative instrument I mentioned in [yesterday's message](https://mirror.xyz/axalane.eth/zccmmzfKyp7Zh3Gd1JuhCQLBiUGoMU9xF6Ncs3VfYqI) is a "major shift in the security industry landscape." This might seem like a tall order. But given how crowded the security space is, your startup won't have great odds of gaining traction without giving buyers a compelling reason to shift from the status quo.

There are always big security waves to grab a piece of at any point in time.

For example:

*   Mitigating risks that existing security approaches miss (ransomware, wiper attacks, etc.)
    
*   Simplifying Zero Trust Architecture adoption
    
*   Acquiring, developing, and retaining security talent
    
*   Adapting security to modern workflows (SecDevOps, location-independent workforce, etc.)
    
*   Adapting security to new architectures (cloud, microservices, APIs, blockchain, etc.)
    
*   Extending security into the software supply chain (SolarWinds, Log4Shell, etc.)
    
*   Securing IoT and other non-traditional connected devices.
    

You can also look for a smaller wave that you can own. Like, maybe you're the company that brings modern security techniques to the legacy systems our rickety electrical grid runs on.

Either way, the key is to articulate to buyers how the world – and their risk posture – is changing in ways that demand action.

\-Doug

---

*Originally published on [Doug Lane](https://paragraph.com/@axalane/choosing-your-wave)*