Finland's Netum Group just acquired 100% of cybersecurity firm Cyberwatch Oy. The deal closed on April 21. No purchase price was disclosed, though the structure includes cash, Netum shares, and performance-based earnouts tied to targets through June 2028.

It's the kind of deal that doesn't generate headlines outside of Helsinki. A mid-cap IT services company absorbing a cybersecurity consultancy. No unicorn valuations. No breathless press releases about disruption. But it tells you something real about where the Nordic IT services market is heading.

Cybersecurity isn't optional anymore. It's table stakes. And for IT services companies like Netum that sell to governments and enterprises, having cybersecurity capabilities in-house rather than partnering for them changes the economics of every deal.

Cyberwatch isn't a typical cybersecurity vendor selling software licenses. Founded in 2017, the company built its business around something harder to commoditize: helping organizations develop their cybersecurity culture. That means training, awareness programs, governance frameworks, and the organizational design that determines whether a company's security posture actually holds under pressure.

It's a consulting-heavy model. High-touch, relationship-driven, and sticky once embedded. For Netum, that stickiness is the point. Every Cyberwatch client engagement becomes a potential entry point for Netum's broader IT services portfolio.

Cyberwatch will continue operating as a subsidiary after the acquisition, with full operational unification planned for July 1, 2026. That timeline suggests a methodical integration rather than a rapid absorption. Keep the brand, keep the team, merge the back office later.

Netum isn't the first Nordic IT services company to acquire a cybersecurity specialist, and it won't be the last. The pattern is clear across Scandinavia and Finland: mid-market IT consulting groups are bolting on security capabilities because their enterprise and public sector clients are demanding it.

The EU's NIS2 Directive, which took effect in 2024, significantly expanded cybersecurity obligations for organizations across critical sectors. Finnish public sector entities, healthcare providers, energy companies, and financial institutions all face heightened requirements. They need partners who can handle both the technical implementation and the organizational change management.

For Netum, the Cyberwatch acquisition fills that gap. Instead of subcontracting cybersecurity work or losing deals where security expertise is a prerequisite, Netum can now walk into a pitch with an integrated offering.

The deal includes an additional purchase price contingent on Cyberwatch hitting agreed targets by June 2027 and June 2028. According to the announcement, Netum expects the acquisition to support its medium-term financial targets.

Earnout structures in IT services acquisitions serve a dual purpose. They reduce the buyer's upfront risk and incentivize the acquired team to stick around and perform. For Cyberwatch's founders and key employees, hitting those targets likely means significant payouts. For Netum, it means aligned interests during the critical integration period.

The fact that Netum is paying partly in its own shares is worth noting for a company listed on Nasdaq Helsinki's First North market. It conserves cash while giving Cyberwatch's sellers upside exposure to the combined entity. Standard playbook, well executed.

This acquisition fits a broader Finnish trend. The country's IT services sector, historically fragmented across dozens of small and mid-sized consultancies, has been consolidating for years. Companies like Gofore, Vincit, and now Netum have been acquiring specialists to build broader platforms that can compete for larger contracts.

Cybersecurity is the current hot add-on, but the consolidation extends to data analytics, cloud migration, and AI implementation services. The logic is the same everywhere: enterprise clients want fewer vendors, broader capabilities, and integrated delivery.

For Netum specifically, Cyberwatch strengthens a portfolio that already includes software development, data analytics, and IT consulting for Finnish public sector clients. Cyber was the missing piece. Now it's not.

No fireworks. No billion-dollar headline. Just a Finnish IT company doing what it needs to do to stay competitive in a market where cybersecurity is no longer a nice-to-have. Sometimes the most important deals are the quietest ones.