Cold email campaign for cyber risk management — multi-channel campaign

LinkedIn connection request Date sent: first day of the sequence Sender: {{salesRep}} Content: --- → Invitation to connect on LinkedIn: (Leave this field blank to bypass LinkedIn’s limit of 5 personalised connections per day and send 15 invitations per day) --- → Introduction (sent 1 day after the LinkedIn connection is accepted): Hello {{firstName}}, thank you for connecting. In large organisations, issues relating to incidents involving suppliers, exposure to ransomware or regulatory compliance often arise outside of scheduled security reviews. How are these matters typically handled at {{companyName}}? --- → Message with colleagues’ names + typo (sent 5 days later): {{firstName}}, regarding these matters, do you usually deal with them directly, or is it {% if colleaguename1 != blank and colleaguename2 != blank %}{{colleaguename1}} or {{colleaguename2}}{% elsif colleaguename1 != blank %}{{colleaguename1}}{% elsif colleaguename2 != blank %}{{colleaguename2}}{% else %}another member of the security or risk management team{% endif %} who handles them? I’m just checking to make sure I’m addressing the right person at {{companyName}}. --- → Corrections of typos (sent immediately afterwards): *security, sorry --- → Follow-up message (sent 7 days later): Hello {{firstName}}, I’ll leave it there for now, if this isn’t the right time. Should we get back in touch in 3 months to see if your needs have changed? I wish you the best of luck with your current projects.

Version A – with an opening line Dear {{firstName}}, {{icebreaker}} Within large organisations, security teams are increasingly being asked to understand what external attackers actually see when they assess the company and its ecosystem. Is this something {{companyName}} is already looking into? Kind regards, {{signature}} unsubscribe Version B – without introduction Dear {{firstName}}, Many large security teams have recently been faced with a more difficult question: what does an attacker actually see when observing the organisation from the outside? It is often in this gap between internal controls and external exposure that surprises arise. Is this a topic that {{companyName}} is already interested in? Kind regards, {{signature}} unsubscribe

Hello {{firstName}}, Would it be a good idea to include {% if colleaguename1 != blank and colleaguename2 != blank %}{{colleaguename1}} or {{colleaguename2}}{% elsif colleaguename1 != blank %}{{colleaguename1}}{% elsif colleaguename2 != blank %}{{colleaguename2}}{% else %}a member of your security or risk management team{% endif %}? In similar environments, security teams have reduced investigation times from several days to a matter of minutes by directly linking dark web activity and threats to exposed assets and critical suppliers, enabling them to act before incidents escalate. We look forward to your response. {{signature}} Unsubscribe

Hello {{firstName}}, One of the challenges frequently cited by security managers is having a multitude of tools, yet lacking visibility into external alerts that actually impact their assets, suppliers or brand. This is often where false positives creep in and relevant signals go unnoticed, particularly during ransomware incidents or those involving suppliers. Is your team comfortable with this situation today? Kind regards, {{signature}} Unsubscribe

Hello {{firstName}}, I don’t want to push it if now isn’t the right time. If it might be of use to you, I’d be happy to offer a brief, no-obligation resource, such as a one-off analysis of your exposure on the dark web, an overview of the threats facing your brand, or a short regulatory compliance checklist for large enterprises. Or perhaps we could get back in touch in a few months, when your priorities have shifted? Have a good day. {{signature}} Unsubscribe