Blog
Notes on data, AI, IT
and security
No marketing fog. The way I think about real problems with founders and managers.
Security
Logs as a data source, not garbage: what you can see before you have a SIEM
How to treat logs as operational material - for diagnostics, audit, and analytics - even without a specialised platform.
Read
Security
After Stuxnet: ICS segmentation is no longer optional
How to ground industrial control system security in real assets, contractors, maintenance windows, and a minimum isolation baseline.
Read