Case Study: DMGT achieves measurable cyber risk reduction and continuous security validation with Cymulate

Private Equity Firm and Media Giant Reduces Risk with Cymulate

DMGT, a 125‑year‑old media and investment group generating around £1.2bn in revenue, faced a high-risk, fast‑moving environment where frequent M&A activity and a lean security team left limited visibility into newly acquired companies until deals closed. Chief Information Security Officer Arkadiy Goykhberg was particularly concerned about ransomware and the potential multimillion‑pound impact of downtime at businesses like MailOnline, and sought an alternative to costly, infrequent red‑team engagements. He selected Cymulate and its Continuous Security Validation to provide ongoing, automated testing across the portfolio.

Using Cymulate, DMGT automated continuous security validation and ran regression tests after every change window to validate controls against evolving attacker TTPs. Cymulate delivered visibility and resilience metrics, prescriptive technical reports for control optimization, and reporting tailored for executives and the Audit & Risk Committee—allowing DMGT to measure and communicate risk reduction, quickly remediate gaps, and maintain confidence that key controls remain effective.

DMGT

Arkadiy Goykhberg

Chief Information Security Officer