Insights · Field notes from the practice

Articles

Published Three articles
Compliance

The SOC 2 founder's guide for companies under 50 employees.

What Type I actually costs, what evidence you need on day one, and how to run the engagement without a full-time compliance manager.

12 min read Read
Architecture

Zero Trust architecture, without the marketing.

A practical Zero Trust reference for mid-market networks. What the principle actually means, which NIST 800-207 components to prioritize, and what to ignore.

15 min read Read
Threat Analysis

Why SMBs became the primary cyber target in 2025.

The economics that drove attackers downmarket, the attack patterns now dominant against 20–200 person businesses, and the controls that move the needle.

10 min read Read

New pieces publish roughly monthly. To be notified, send a note and ask to be added to the insights list.

Live feed · Updated daily

Latest in cybersecurity

Headlines from across the industry, grouped by the practice areas we work in. Refreshed automatically every 24 hours.

Loading the latest headlines…