In this thought piece we discuss insecurity about cyber security, a risk factor that is increasingly relevant but remains underappreciated. We explore how to consider cyber risk in due diligence of individual investments, in portfolio construction, plus how to assess an investment manager’s preparedness to manage cyber risk at the fund level.