Here is an interesting and some say depressing point of view: VCs are supposedly losing interest in infosec investments...
Treading the VC waters: Security investments - Any hope for VCs?: "The reasons for this are many, including -
* A maturing industry (that's consolidating)
* No IPO activity in security (only 3 IPOs in NASDAQ the last 5(!) years)
* The fact that the startups end up as 'point' solutions which large companies like to view as 'off balance sheet R&D' acquisitions
* And the fact that many segments are considered overfunded..."
I kinda doubt some of the above points, but then again, I am not a VC :-(
Also, note this quote that kinda proves that the guy knows what he is talking about (i.e. he is not into this silly 'staying aheads of the hackers' crap): "But I guess it boils down to the fact that we don't know what the next big security threat will be."