Hey Jack! Can you tell me a bit about yourself and Coniq?
Absolutely! I’m Jack Axten, Head of Service and Information Security at Coniq. I’ve been with the company for about two and a half years, overseeing infrastructure security, policies, procedures, and global service delivery. My role ensures that our systems are secure and that our clients' needs are met efficiently.
Coniq is the leading customer engagement and loyalty platform specifically designed for retail, shopping centers, and outlets worldwide. We specialize in helping retail destinations increase customer lifetime value through data-driven loyalty programs. We’ve been in the market for around 15 years in the U.S. and Europe, and are now expanding globally, gaining strong momentum in the Middle East and beyond.
What role does security play in the customer engagement industry?
Security is paramount. We handle sensitive personal data that falls under GDPR and other global data protection regulations. Beyond compliance, robust security measures are essential for maintaining trust with shopping malls, retailers, and their customers. There's a powerful trickle-down effect: safeguarding our brand also protects our clients, shopping malls, outlets, and the individual brands within them. By prioritizing security, we not only uphold Coniq’s reputation but also preserve the integrity of our clients and ultimately the brands that rely on our platform.
“By prioritizing security, we not only uphold Coniq’s reputation but also preserve the integrity of our clients and ultimately the brands that rely on our platform.”
Was there a defining moment when you realized Coniq needed to take security more seriously?
As we transitioned from a fast-growing scale-up to a globally recognized company, we had to evolve our mindset. Our expansion into the U.S. introduced stricter security scrutiny from corporate clients. While GDPR had already set high standards in Europe, we found that many U.S. prospects had even greater security expectations. We needed to be proactive rather than reactive in our security approach.
Before Aikido, what were your biggest security challenges?
Compliance and data protection were top concerns. Previously, we relied on git-system vendors to alert us to security risks, but these notifications often came too late. While we were fortunate not to experience major incidents, we realized we needed a stronger security posture to match our business growth.
What specific pain points led you to look for a security solution?
One of our biggest challenges was the delayed communication around vulnerabilities in open-source technologies. When security issues arise late, fixing them becomes rushed, leading to potential customer impact and reputational risks. We needed a solution that provided real-time insights and allowed us to manage security proactively. With Aikido, we finally have real-time visibility into vulnerabilities, allowing us to address them before they become critical issues.
"With Aikido, we finally have real-time visibility into vulnerabilities, allowing us to address them before they become critical issues."
Were you using any security tools before Aikido? Why did you switch?
At the time, we were relying on open-source tools and our code repositories. We did evaluate other security solutions, including Veracode and Checkmarx, but found them to be more legacy-focused and less aligned with our needs. We also considered Snyk but ultimately wanted something more comprehensive.
Why did you choose Aikido?
Our CTO and I discovered Aikido and immediately saw its potential. It checked all our boxes, cloud-hosted, intuitive, and tailored to our needs. We discussed a few missing features with Aikido, and they’re already on the roadmap. That gave us confidence that we’ll have everything we need as the platform evolves.
At Coniq, we understand the challenges of scaling a business and have a deep appreciation for ambitious companies that deliver quality solutions. Supporting Aikido isn’t just a strategic decision. It reflects our pay-it-forward mentality, helping another innovative company thrive while benefiting from a great solution ourselves.
How has your experience working with the Aikido team been?
It’s been fantastic. The level of engagement and attention from Aikido’s team has been exceptional. They truly treat us like a partner rather than just another customer. In contrast, other vendors felt more transactional, like they were just trying to secure another deal.
What’s your favorite Aikido feature?
Given my role, I appreciate the holistic view Aikido provides, especially in reporting. We receive two to three security-related client requests each week, and Aikido has streamlined our ability to respond. It’s helped us improve our vulnerability management while providing clear snapshots of compliance reports like SOC2, which we can easily share with clients.
As Coniq scaled, slow alerts and legacy tools couldn’t keep up. Aikido gave their dev team real-time visibility, fewer false positives, and instant compliance reporting, all without the bloat. Now they fix issues before they become problems - and ship faster, with confidence.
.svg){kind=logo}
%201.svg)
