Writing
New pieces on enterprise risk and cyber strategy published regularly.
Follow on LinkedIn for the latest — longer pieces appear here.
Follow on LinkedIn →Most developers think a security architecture review is about finding vulnerabilities. It isn't.
By the time you're looking for vulnerabilities, the expensive decisions have already been made.
Cybersecurity has a marketing problem.
The industry sells $200,000 platforms to detect advanced persistent threats while the average enterprise still can't reliably tell you who has admin access to its finance system.