Robeco has involved a cyber expert in its investment process for the past year. This white hat hacker is investigating the degree to which companies Robeco invests in might appeal to hackers and which business units are at risk.
The expert also develops strategies for the fund house which it can go through with companies that are vulnerable to cybercrime. These engagement activities are an effort by the firm to improve the cybersecurity of the companies in which it invests.
This was revealed this morning at a Robeco trend event in Rotterdam, where fund managers Henk Grootveld, Jack Neele and Jeroen van Oerle, as well as trend analyst Vera Krückel, explained to journalists which of the current trends they consider most important: fintech, e-Sports and cybersecurity.
The cyber expert has warned Robeco on at least one occasion of an ‘open’ development department at a financial company, according to Jeroen van Oerle, Robeco Fintech fund manager. “So I discussed it with the company. As it turned out, it had been done deliberately. What's more, the department was completely disconnected from the rest of the company, so the situation posed no risk to the other departments.”
Despite being a false alarm, the discovery has actually been highly valuable for Robeco, as have other findings reported by the white hat. Van Oerle: “It has led to discussions with companies that we wouldn't otherwise have had.”
Cybersecurity should be top priority, according to Head of Trend Investing Henk Grootveld and Trend Investing Equity team analyst Vera Krückel. That explains not only why they hired a cyber expert, but also why cybersecurity will be a permanent fixture of the 'governance' aspects of Robeco's ESG policy from now on.
And this entails more than just going through the cybersecurity section of the ESG questionnaires of the likes of KPMG or PWC. “You have to verify whether steps are actually being taken,” explain the fund managers. “We don't just look at companies' potential weak points, but also their cybersecurity strategy and governance.”
A broad approach is necessary, says the team, because cybersecurity is not only important for obvious companies like fintechs, online retailers and IT firms. “Cybersecurity doesn't always play a direct role at companies − it can impact them in so many other ways,” says Krückel
She doesn't think it's all doom and gloom, however, and points out the myriad investment opportunities in cybersecurity. Each year, companies spend an average of nearly USD 12 million on cybersecurity. That's money that parties specializing in online security are all too pleased to rake in.
Krückel does, however, note that it's not easy to choose from the many companies that are in some way ‘active’ in cybersecurity. All the various sub-disciplines in the industry make it somewhat confusing. Where one company focuses on cellphone protection, another specializes in data protection and yet another on infrastructure security.
Not to mention the countless businesses that want to piggyback on the trend, and have innovative ideas − or at least think they do. According to Krückel, there are around 1,500 start-ups which could turn into successful companies, or could fail miserably.
That's why Robeco uses a life cycle to classify the different cybersecurity companies. A company begins the cycle in the introduction stage, after which it can move from ‘growth’ to ‘maturity’ and, finally, ‘decline’. Robeco allocates the core positions in the portfolio to cash cows such as Trend Micro and Symantec. But innovative players, such as Cyberark and Splunk, also have their place.
This text is a shortened version of an article that was first published in Fondsnieuws magazine, a Dutch publication for professional investors.
The Robeco Capital Growth Funds have not been registered under the United States Investment Company Act of 1940, as amended, nor or the United States Securities Act of 1933, as amended. None of the shares may be offered or sold, directly or indirectly in the United States or to any U.S. Person (within the meaning of Regulation S promulgated under the Securities Act of 1933, as amended (the “Securities Act”)). Furthermore, Robeco Institutional Asset Management B.V. (Robeco) does not provide investment advisory services, or hold itself out as providing investment advisory services, in the United States or to any U.S. Person (within the meaning of Regulation S promulgated under the Securities Act).
This website is intended for use only by non-U.S. Persons outside of the United States (within the meaning of Regulation S promulgated under the Securities Act who are professional investors, or professional fiduciaries representing such non-U.S. Person investors. By clicking “I Agree” on our website disclaimer and accessing the information on this website, including any subdomain thereof, you are certifying and agreeing to the following: (i) you have read, understood and agree to this disclaimer, (ii) you have informed yourself of any applicable legal restrictions and represent that by accessing the information contained on this website, you are not in violation of, and will not be causing Robeco or any of its affiliated entities or issuers to violate, any applicable laws and, as a result, you are legally authorized to access such information on behalf of yourself and any underlying investment advisory client, (iii) you understand and acknowledge that certain information presented herein relates to securities that have not been registered under the Securities Act, and may be offered or sold only outside the United States and only to, or for the account or benefit of, non-U.S. Persons (within the meaning of Regulation S under the Securities Act), (iv) you are, or are a discretionary investment adviser representing, a non-U.S. Person (within the meaning of Regulation S under the Securities Act) located outside of the United States and (v) you are, or are a discretionary investment adviser representing, a professional non-retail investor. Access to this website has been limited so that it shall not constitute directed selling efforts (as defined in Regulation S under the Securities Act) in the United States and so that it shall not be deemed to constitute Robeco holding itself out generally to the public in the U.S. as an investment adviser. Nothing contained herein constitutes an offer to sell securities or solicitation of an offer to purchase any securities in any jurisdiction. We reserve the right to deny access to any visitor, including, but not limited to, those visitors with IP addresses residing in the United States.
This website has been carefully prepared by Robeco. The information contained in this publication is based upon sources of information believed to be reliable. Robeco is not answerable for the accuracy or completeness of the facts, opinions, expectations and results referred to therein. Whilst every care has been taken in the preparation of this website, we do not accept any responsibility for damage of any kind resulting from incorrect or incomplete information. This website is subject to change without notice. The value of the investments may fluctuate. Past performance is no guarantee of future results. If the currency in which the past performance is displayed differs from the currency of the country in which you reside, then you should be aware that due to exchange rate fluctuations the performance shown may increase or decrease if converted into your local currency. For investment professional use only. Not for use by the general public.