Insights
JAG Secure at DIGIT Expo 2025
JAG Secure exhibited at DIGIT Expo 2025 at the Edinburgh International Conference Centre on 27 November.
The event
DIGIT Expo is the largest annual enterprise technology event in Scotland. This year it brought together more than seventeen hundred delegates, around sixty exhibitors and over fifty speakers across five stages, covering cyber security, data, AI and machine learning, cloud, and leadership.
The exhibition floor spans the whole supply chain: security, networking, infrastructure, cloud, analytics, managed services, telecoms and connectivity. The speaker list over the years has included Google, Microsoft, JPMorgan, IBM and McLaren. This year’s cyber stage covered the West Lothian Council incident from breach through to recovery, the changing shape of ransomware, post-quantum certificate management and the state of the criminal ecosystem.
We shared the exhibitor list with Acumen Cyber, Arctic Wolf, Aspire and a long list of others, most of them considerably larger than us.
Why exhibit
There is a fair question about whether a one person consultancy has any business taking a stand at an event that size, next to vendors with marketing departments and budgets to match.
The answer is that the conversations are different. A stand at a technology expo is not a lead generation exercise for a business like this, or at least it is a poor one. What it is good for is talking to people who are dealing with the problems we test for, without a sales process in the way. IT managers who have inherited an estate nobody documented. People who have been told to get a test done and have no idea what they are buying. Practitioners who want to compare notes on what they are seeing.
Most of the useful conversations were versions of the same thing. Somebody describing a system they are quietly worried about, and wanting a straight answer about whether it matters.
What came out of it
A better sense of what the market actually misunderstands about testing, which has shaped a good deal of what we have written since. The recurring themes were the difference between a scan and a test, whether compliance and security are the same thing, and how far a Microsoft 365 tenant is secure when you first stand it up.
None of that is news to anybody in the industry. All of it is news to a significant number of the people buying.

