Sign up to save your podcasts
Or
Share The Doorman Fallacy: How Cost Cuts Become Catastrophes
Share to email
Share to Facebook
Share to X
Share to email
Share to Facebook
Share to X
Or
The Doorman Fallacy: How Cost Cuts Become Catastrophes
The £18,000 Saving That Cost £200,000 in Revenue
Ever cut a cost that seemed obviously wasteful, only to discover you'd destroyed something far more valuable? Welcome to the Doorman Fallacy —it's probably happening in your business right now.
In this episode, Noel Bradford introduces a concept from marketing expert Rory Sutherland's book "Alchemy" that explains precisely why "sensible" security cost-cutting so often leads to catastrophic consequences. Through five devastating real-world case studies, we explore how businesses optimise themselves into oblivion by defining roles too narrowly and measuring only what's easy to count.
Spoiler alert: The doorman does far more than open doors. And your security measures do far more than their obvious functions.
What You'll Learn
The Core Concept
Five Catastrophic Case Studies
1. The Security Training Fallacy (Chapter 2)
2. The Cyber Insurance Fallacy (Chapter 3)
3. The Dave Automation Fallacy (Chapter 4)
4. The MFA Friction Fallacy (Chapter 5)
5. The Vendor Relationship Fallacy (Chapter 6)
Key Statistics & Case Studies
Common pattern: Small measurable savings, catastrophic unmeasurable consequences.
The Five-Question Framework
Before cutting any security costs, ask yourself:
Practical Takeaways
What to Do Tomorrow
Review your most recent efficiency or cost-cutting decision. Ask:
Better Metrics for Security Investments
Instead of measuring cost-per-hour or savings-per-quarter, measure:
Making Trade-Offs Honestly
Budget constraints are legitimate. The solution isn't "never cut anything." It's:
Quotable Moments
"The doorman's job is opening doors. So we replaced him with an automatic door. Saved £35,000 a year. Lost £200,000 in revenue because the hotel stopped feeling luxurious. That's the Doorman Fallacy." — Noel
"Security training's nominal function is delivering information. Its actual function is building culture. Cut the training, lose the culture, then wonder why nobody reports suspicious emails anymore." — Noel
"We saved £8,000 on training. Spent £70,000 on the Business Email Compromise attack that training would have prevented. The CFO was very proud of the efficiency gains." — Noel
"You can't prove a negative. Can't show the value of the disasters you prevented because they didn't happen. So the training gets cut, the insurance gets cancelled, and everyone acts surprised when the predictable occurs." — Mauven
"The efficiency consultant's dream outcome: Measurable cost eliminated, unmeasurable value destroyed, everyone confused about why things feel worse despite the improvement." — Noel
Chapter Timestamps
Total Runtime: Approximately 62 minutes
Sponsored By
Authentrend - Biometric FIDO2 Security Solutions
This episode is brought to you by Authentrend, which provides passwordless authentication solutions that address the friction problem discussed in Chapter 5. Their ATKey products use built-in fingerprint authentication—no passwords, no PIN codes, just five-second authentication that's both convenient AND phishing-resistant. Microsoft-certified, FIDO Alliance-trusted, and designed for small businesses that need enterprise-grade security without enterprise-level complexity.
Learn more: authentrend.com
Resources & Links
Mentioned in This Episode:
Useful Tools & Guides:
UK-Specific Resources:
About Your Hosts
Noel Bradford brings 40+ years of IT and cybersecurity experience from Intel, Disney, and the BBC to small-business cybersecurity. Now serving as CIO/Head of Technology for a boutique security-first MSP, he specialises in translating enterprise-level security to SMB budgets and constraints.
Mauven MacLeod is an ex-government cyber analyst who now works in the private sector helping businesses implement government-level security practices in commercial reality—her background bridges national security threat awareness with practical small business constraints.
Support The Show
New episodes every Monday at Noon UK Time!
Never miss an episode! Subscribe on your favourite podcast platform:
Help us reach more small businesses:
Connect with us:
Episode Tags
#Cybersecurity #SmallBusiness #SMB #InfoSec #CyberInsurance #MFA #SecurityTraining #ITManagement #BusinessSecurity #RiskManagement #DoormanFallacy #BehavioralEconomics #SecurityROI #UKBusiness #CostBenefit #SecurityCulture #IncidentResponse #VendorManagement #Authentrend #FIDO2 #PasswordlessAuthentication
Legal
The Small Business Cyber Security Guy Podcast provides educational information and general guidance on cybersecurity topics. Content should not be considered professional security advice for your specific situation. Always consult qualified cybersecurity professionals for implementation guidance tailored to your organisation's needs.
Copyright © 2025 The Small Business Cyber Security Guy Podcast. All rights reserved.
Got a question or topic suggestion? Email us at [email protected] or leave a comment below!
View all episodes
By The Small Business Cyber Security GuyThe £18,000 Saving That Cost £200,000 in Revenue
Ever cut a cost that seemed obviously wasteful, only to discover you'd destroyed something far more valuable? Welcome to the Doorman Fallacy —it's probably happening in your business right now.
In this episode, Noel Bradford introduces a concept from marketing expert Rory Sutherland's book "Alchemy" that explains precisely why "sensible" security cost-cutting so often leads to catastrophic consequences. Through five devastating real-world case studies, we explore how businesses optimise themselves into oblivion by defining roles too narrowly and measuring only what's easy to count.
Spoiler alert: The doorman does far more than open doors. And your security measures do far more than their obvious functions.
What You'll Learn
The Core Concept
Five Catastrophic Case Studies
1. The Security Training Fallacy (Chapter 2)
2. The Cyber Insurance Fallacy (Chapter 3)
3. The Dave Automation Fallacy (Chapter 4)
4. The MFA Friction Fallacy (Chapter 5)
5. The Vendor Relationship Fallacy (Chapter 6)
Key Statistics & Case Studies
Common pattern: Small measurable savings, catastrophic unmeasurable consequences.
The Five-Question Framework
Before cutting any security costs, ask yourself:
Practical Takeaways
What to Do Tomorrow
Review your most recent efficiency or cost-cutting decision. Ask:
Better Metrics for Security Investments
Instead of measuring cost-per-hour or savings-per-quarter, measure:
Making Trade-Offs Honestly
Budget constraints are legitimate. The solution isn't "never cut anything." It's:
Quotable Moments
"The doorman's job is opening doors. So we replaced him with an automatic door. Saved £35,000 a year. Lost £200,000 in revenue because the hotel stopped feeling luxurious. That's the Doorman Fallacy." — Noel
"Security training's nominal function is delivering information. Its actual function is building culture. Cut the training, lose the culture, then wonder why nobody reports suspicious emails anymore." — Noel
"We saved £8,000 on training. Spent £70,000 on the Business Email Compromise attack that training would have prevented. The CFO was very proud of the efficiency gains." — Noel
"You can't prove a negative. Can't show the value of the disasters you prevented because they didn't happen. So the training gets cut, the insurance gets cancelled, and everyone acts surprised when the predictable occurs." — Mauven
"The efficiency consultant's dream outcome: Measurable cost eliminated, unmeasurable value destroyed, everyone confused about why things feel worse despite the improvement." — Noel
Chapter Timestamps
Total Runtime: Approximately 62 minutes
Sponsored By
Authentrend - Biometric FIDO2 Security Solutions
This episode is brought to you by Authentrend, which provides passwordless authentication solutions that address the friction problem discussed in Chapter 5. Their ATKey products use built-in fingerprint authentication—no passwords, no PIN codes, just five-second authentication that's both convenient AND phishing-resistant. Microsoft-certified, FIDO Alliance-trusted, and designed for small businesses that need enterprise-grade security without enterprise-level complexity.
Learn more: authentrend.com
Resources & Links
Mentioned in This Episode:
Useful Tools & Guides:
UK-Specific Resources:
About Your Hosts
Noel Bradford brings 40+ years of IT and cybersecurity experience from Intel, Disney, and the BBC to small-business cybersecurity. Now serving as CIO/Head of Technology for a boutique security-first MSP, he specialises in translating enterprise-level security to SMB budgets and constraints.
Mauven MacLeod is an ex-government cyber analyst who now works in the private sector helping businesses implement government-level security practices in commercial reality—her background bridges national security threat awareness with practical small business constraints.
Support The Show
New episodes every Monday at Noon UK Time!
Never miss an episode! Subscribe on your favourite podcast platform:
Help us reach more small businesses:
Connect with us:
Episode Tags
#Cybersecurity #SmallBusiness #SMB #InfoSec #CyberInsurance #MFA #SecurityTraining #ITManagement #BusinessSecurity #RiskManagement #DoormanFallacy #BehavioralEconomics #SecurityROI #UKBusiness #CostBenefit #SecurityCulture #IncidentResponse #VendorManagement #Authentrend #FIDO2 #PasswordlessAuthentication
Legal
The Small Business Cyber Security Guy Podcast provides educational information and general guidance on cybersecurity topics. Content should not be considered professional security advice for your specific situation. Always consult qualified cybersecurity professionals for implementation guidance tailored to your organisation's needs.
Copyright © 2025 The Small Business Cyber Security Guy Podcast. All rights reserved.
Got a question or topic suggestion? Email us at [email protected] or leave a comment below!