AllThreats Security — News & Press Coverage

CRN November 2024 Company Growth

AllThreats Security opens London office, declines second PE acquisition offer — "We're building something different"

The Reston-based cybersecurity firm expanded its European presence this fall while confirming it has turned down two private equity acquisition offers in the past 18 months, citing concerns about how PE ownership would affect its practitioner-led culture and employee compensation structure.

"We've had the conversations. The multiples were attractive. But when we modeled what the post-acquisition environment would look like for our analysts — the utilization targets, the benefit restructuring, the pressure on headcount — we said no both times. We're not anti-growth. We're anti-extractive-growth." — Marcus Kwame, CEO

SC Media September 2024 Workforce

AllThreats Security completes 10th year without a single involuntary layoff — Kwame explains how

As cybersecurity firms across the sector have conducted rounds of layoffs amid tightening enterprise budgets, AllThreats Security reaches its 10-year mark with no record of involuntary workforce reductions. CEO Marcus Kwame attributed the record to a combination of conservative revenue forecasting and a deliberate decision not to over-hire during pandemic-era demand spikes.

"We watched peers hire 30% headcount increases in 2021 and 2022 because the demand felt permanent. We hired 12%. It felt cautious at the time. In hindsight, it meant we never had to make the phone calls that destroy trust — and trust is the only currency that actually matters in this business." — Marcus Kwame, CEO

Washington Business Journal August 2024 Award

🏆 Best Place to Work 2024

AllThreats Security named Best Place to Work for fourth consecutive year — employees cite promotion transparency and learning investment

The Washington Business Journal recognized AllThreats Security in its annual Best Places to Work ranking for the fourth year running, with employee survey responses highlighting internal promotion rates, the $4,200 annual learning budget, and DEI programs with named executives and dedicated funding as distinguishing factors.

"What stood out in the survey data was the specificity of the positive feedback. Employees didn't describe a good culture in general terms — they named programs, named managers, named specific decisions that mattered to them. That kind of detail in employee feedback is a signal that the culture is real, not managed." — Award program spokesperson

Cyberscoop June 2024 Diversity & Inclusion

AllThreats' AT Scholars program places 89% of graduates in full-time roles — and pays $65K during the program

The cybersecurity firm's flagship DEI pipeline program, which recruits underrepresented students into a 12-month paid rotational position at $65,000 annually, reported its highest conversion rate to date as the 2024 cohort completed its rotation. Industry observers note the compensation structure — a full salary rather than the stipend or unpaid model common in tech apprenticeships — as the program's most unusual characteristic.

"We pay scholars $65,000 a year because that's what their time is worth, and because financial insecurity during a career pivot is a barrier that disproportionately affects the candidates we're trying to reach. An apprenticeship that requires you to already have money to participate isn't a pipeline — it's a check box." — Dr. Priya Nair, COO

Dark Reading May 2024 Leadership

AllThreats' VP of Professional Services promoted from within after 8 years — Mahmood on building teams vs. buying them

Tariq Mahmood's promotion to VP of Professional Services marks the latest in a series of senior appointments AllThreats has made from its internal ranks. The firm reports that 72% of senior roles over the past three years were filled through internal promotion, a figure significantly above the cybersecurity consulting industry average of approximately 35%.

"I started as an IR lead. AllThreats funded my GCFE, my GCIH, and a SANS course I've never found time to fully use. When the Director of IR role opened, Marcus asked if I wanted to apply before it was posted externally. That's not standard — I've worked at places that posted senior roles externally and then told internal candidates they could apply too, as a formality. This was different." — Tariq Mahmood, VP Professional Services

EdTech Magazine March 2024 Community

AllThreats Security expands AT Community Fund to $150K annually — three full college scholarships awarded

AllThreats Security announced an expansion of its AT Community Fund, increasing annual allocation to $150,000 and awarding three full scholarships of $40,000 each to high school seniors from underrepresented communities pursuing cybersecurity degrees. The fund is voted on by employees — all 600+ staff participate in recipient selection.

"We're a company of 600 people deciding together where $150,000 goes in our community. That's not typical. It matters that everyone votes — not because the money is better spent that way, but because it makes the commitment real for everyone in the company, not just an executive decision that shows up in a CSR report." — Marcus Kwame, CEO

MSSP Alert January 2024 Business Performance

AllThreats Security posts 96% client retention rate for fourth consecutive year — COO attributes it to analyst tenure

AllThreats Security disclosed a 96% client retention rate for fiscal year 2023, consistent with the prior three years. COO Dr. Priya Nair made an unusual attribution in the company's client briefing: she credited the rate primarily to analyst tenure rather than product features or pricing, arguing that client outcomes in professional services are inseparable from practitioner continuity.

"Our median analyst has been here 5.3 years. They know our clients' environments the way a doctor knows a long-term patient. Every time we lose an analyst — which is rare, but happens — we lose institutional knowledge that takes 18 months to rebuild. High client retention and high employee retention aren't coincidentally correlated. They're causally related. We build for the latter and the former follows." — Dr. Priya Nair, COO

Security Week October 2023 Operations

AllThreats IR team deployed across four continents in single week following coordinated ransomware campaign

When a coordinated ransomware campaign struck a multinational financial services client across operations in the US, UK, Singapore, and South Africa, AllThreats Security activated its retainer IR teams across all four regions within 14 hours. The firm's 24/7 response model and geographically distributed team structure enabled simultaneous containment operations without requiring emergency staffing escalations.

"The analysts who responded in Singapore and Johannesburg weren't contractors we spun up for the engagement. They're staff. They know the client. They knew what to look for. That's not a capability you can build with a contingent workforce model — it requires people who have been here long enough to know the environment and trust each other under pressure." — Tariq Mahmood, VP Professional Services