The conventional approach to manage the security risks cannot deal with surprises. It looks at the patterns of recurrent events, regularities and statistics. This conventional model assumes a relatively stable environment. Unfortunately, the future is often unlike the past and full of uncertainties and surprises. The assumption that past events are a sufficient guide to the future is flawed. Real–world dynamics can lead to multiple baffling consequences.
There may be little time to react and adapt. An organization needs a reasonable degree of robustness to protect against or absorb disruptive events. But the downside of robustness is rigidity. An organization needs to evolve and have the flexibility to learn from unforeseen events and adapt.
 There is a need to question assumptions and habits, manage dilemmas and contradictions and consider the value of small data versus big data. Meaning and creative conversations need to take their rightful place next to technological and bureaucratic responses.
 Deep Security is essentially a method that allow organizations to develop their own immune system. It facilitates building flexibility into an organization and allows it to rapidly adapt to shocks.  Deep Security is not another set of standard risk management tools. It does not focus on disruptive events as such but on the complex system and dynamics in which such events are generated and take place. The aim is to forge intelligent, adaptive capacities that allow an organization to navigate in such an environment.