Notes on data, AI, IT
and security
No marketing fog. The way I think about real problems with founders and managers.
Long context in LLMs: what it changes for business tasks in 2026
Modern models support context windows of hundreds of thousands of tokens. What this practically changes for companies and where the real limits are.
Simple architecture often beats trendy
How the urge to use the right stack and draw beautiful diagrams quietly breaks projects that could have been running calmly for years.
Internal API governance: why you need it when you have more than three teams
When a company grows to several product teams, internal integrations start creating problems. Why this happens and how to work with it.
Streaming data architecture: when it actually changes an operational decision
Streaming data is a popular topic. But for most business tasks, the more useful question is when it is genuinely needed versus when it is overengineering.
EU AI system definition guidelines: how this affects real products
The European regulator published guidelines on defining an AI system. What this means for companies that build or use AI-powered products.
NIS2 simplification package: where compliance becomes less paperwork
What the EU regulatory simplification package around NIS2 means for companies working with European partners or clients.
IT budget after a growth freeze: what to cut, what to protect
How to set priorities in an IT budget when the company shifts from growth mode to caution.
Five AI questions worth answering before the year ends
2025 changed expectations around AI. I close the year with five questions that help managers honestly assess their readiness for the year ahead.
Platform engineering: from ops team to internal product
Platform engineering is not just a new word for DevOps. It is a shift in how the infrastructure team thinks about its work - and who its customer is.
AI shifts the phishing baseline: what companies need to rethink
Generative models have reduced the cost of producing convincing phishing emails to zero. I break down how this changes the threat model and what needs to change in defence.
MCP and managed agents: how to connect to data without writing one-off glue code
The Model Context Protocol changes how agents connect to external systems. I break down what this means for architecture and data management in enterprise.
Data contracts: the agreement that comes before the pipeline
When two teams exchange data without a formal agreement, the pipeline works until it does not. Data contracts make expectations explicit and incidents avoidable.