Essays and field notes from the practical side of running, defending, and recovering complex systems.
Three independent industry surveys reach the same conclusion: the awareness exists, the planning does not, and the gap is widest in the middle of the market. The edge has moved. The interior has not.
PQC is a cryptographic debt, inventory, procurement, and governance problem. The quantum element is the deadline. Everything else is the work that should already have been done — and a disciplined Sense → Decide → Act → Learn loop is how operators close it without panic.
On building technology environments that survive disruption, vendor failures, and the messy edge cases that don't show up in best-practice diagrams.
On moving from reactive firefighting to measured, insurable resilience. IR 2.0 and the Calm Loop, in practice.
On vendor accountability, licensing fairness, and the risks of building critical systems on top of providers whose interests may not stay aligned with yours.
On clarity, attention, and information discipline as a leadership competency. Why staying clear-headed is now an operating skill.
A cryptographic debt, inventory, procurement, and governance problem — and three independent industry surveys say enterprises have not started fixing it. Disciplined urgency, the gap between the edge and the interior, and an operator-grade plan that fits the calendar of the people who actually own the work.
The gap between investment and outcome is now legible to underwriters — and that changes the conversation. Four pillars, one operating loop, and the discipline that turns incident response from a document into a capability.
The modern world is drowning in information and starving for clarity. The practice I built to reclaim attention — five steps, applied as content arrives, treating information hygiene as an operating discipline rather than a personal preference.
A retroactive devaluation of investments enterprises made under different assumptions — and a template other vendors will study. The Broadcom-VMware situation is now the case study for how perpetual commitments survive ownership changes.
A first-person account of the response from inside one of the affected environments. What the night of July 19 revealed about the gap between we have security tools and we can recover.