Blog

209 - Supply chains and inflection points

September 18, 2022

We're at a strange time in history for software development and engineering.

208 - Process is the backbone of organisations

September 4, 2022

Welcome back, apologies for not sending a newsletter out last week, but I was on holiday and tanning myself on the beach. As a reward, a slightly longer than normal newsletter for you.

207 - Cognitive load

August 21, 2022

I had a great time at Blackhat, BSides and DEFCON. There were loads of talks, on a huge number of technical topics, and one of the things that I came away, both inspired and slightly daunted by, was the breadth of topics that security can cover.

206 - Too excited to write coherently

August 7, 2022

This newsletter is short for a couple of reasons.

205 - Determining whether you have good policies and processes

July 31, 2022

I’m not a huge fan of certifications.

204 - Treat data like toxic waste

July 24, 2022

It seems that the argument for privacy and lawful interception has erupted once more.

203 - AI is the new hotness

July 17, 2022

Phew!

202 - Where responsibilities lie

July 10, 2022

If you run a major company, and use code written by a hobbyist developer, whose job is it to ensure the code is secure?

201 - Just do it

July 3, 2022

I do love a theoretical argument.

200 - Issue 200

June 26, 2022

I can't really believe that I've managed to write 200 of these, and that people continue to subscribe week after week.

199 - Learning by doing

June 19, 2022

How do we learn stuff?

198 - Controlling access to the things that matter

June 12, 2022

Identity and Access Control forms the basis of almost all security as we know it.