Selected Talks & Publications
+Workshops, Talks, Publications
-Occasionally, I speak and write about systems of all shapes and sizes. Here are some of the works I’m happy with.
+Bookable Talks & Workshops
+ +Talks & Workshops you can book.
+ ++ +
Practical threat modelling for engineering teams
+Lightweight, repeatable threat modelling you can actually run in sprint cadence. We cut jargon, pick a fit-for-purpose method, and get to work quickly. Read about it here.
+-
+
- Takeaways: initial model (only for workshops), playbook, templates, 30-day plan to make it stick. +
- Formats: 45–90min talk, ~3h half-day (guided exercise), 6–8h full-day (hands-on) +
+ +
ISMS & SSDLC that you can work with
+Let’s turn “we should do security” into a minimal ISMS and an SSDLC that actually holds up in practice. We map controls to your workflows (code, CI/CD, infra) and prove it with artifacts. Read about it here.
+-
+
- Takeaways: control set, CI/CD hooks for evidence (workshop only), audit-ready checklists. +
- Formats: 45–90min talk, ~3h half-day, 6–8h full-day (hands-on) +
+ +
Funding & buyer readiness
+What VCs, acquirers, and enterprise buyers actually check, and how to be ready to answer. Architecture narrative, risk posture, and processes that actually give you something in return. Read about it here.
+-
+
- Takeaways: a DD checklist, a clean architecture one-pager, a 30-day prep plan including process refinements (workshop only). +
- Formats: 45–90min talk, ~3h workshop, 6-8h full-day (hands on) +
+ +
Custom workshops are available; tell me your team’s goals and I’ll tell you if I can help you.
+ +Selected Talks & Publications
+ +I speak and write about systems of all shapes and sizes. Here are some of the works I’m happy with.