• Cyber Safety
  • Posts
  • Defense in Depth: Only as Strong as Its Weakest Layer

Defense in Depth: Only as Strong as Its Weakest Layer

May 06, 2026

In partnership with

Blu Dot surpasses 2,000% ROAS with self-serve CTV ads

Home furniture brand Blu Dot blew up on CTV with help from Roku Ads Manager. Here’s how:

After a test campaign reached 211,000 households and achieved 1,010% ROAS, the brand went all in to promote its annual sales event. It removed age and income constraints to expand reach and shifted budget to custom audiences and retargeting, where intent was strongest.

The results speak for themselves. As Blu Dot increased their investment by 10x, ROAS jumped to 2,308% and more page-view conversions surpassed 50,000.

“For CTV campaigns, Roku has been a top performer,” said Claire Folkestad, Paid Media Strategist, Blu Dot. “Comping to our other platforms, we have seen really strong ROAS… and highly efficient CPMs, lower than any other CTV partner we've worked with.”

Using Roku Ads Manager, the campaign moved from a pilot to a permanent performance engine for the brand.

Layers Must Be Independent

If your firewall, EDR, and identity provider all rely on the same compromised credentials, you don’t have layers — you have a single point of failure.

One Misconfiguration Can Collapse Everything

A single open port, disabled logging setting, or overly broad IAM role can bypass multiple defensive controls at once.

Redundancy Without Strategy Adds Complexity

Stacking tools without integration creates blind spots. True defense in depth requires coordination, not just accumulation.

This docs platform just raised $45M

Mintlify powers documentation for 20,000+ companies reaching 100M+ people a year. Backed by a16z and Salesforce Ventures. Your docs deserve the same infrastructure.

Detection Complements Prevention

Prevention blocks known threats. Detection catches what slips through. Both must operate simultaneously — not sequentially.

Human Processes Are Part of the Stack

Approvals, change management, and incident response workflows are security controls too. Technology alone doesn’t create resilience.

Test Each Layer Regularly

Run penetration tests, red team exercises, and tabletop simulations. A layered defense only works if every layer functions under pressure.

Renewals stop being a fire drill.

Most churn blindsides the CSM in renewal week. Champion left. Usage dropped. NPS slid months ago.

A colleague in Slack watches the signals around the clock. Your CSMs catch every risk months before renewal.

11,000+ teams use Viktor daily. SOC 2 certified. Your data never trains models.