Insights

Practical writing from the work — vulnerability management, compliance engineering, and incident response in regulated EU environments.

Vulnerability management

Which CVEs actually matter? KEV and EPSS, explained for busy teams

Around 3,000 CVEs are published every month and only a small fraction are ever exploited. How CISA KEV and EPSS turn an impossible patching backlog into a short, defensible priority list.

read →Compliance engineering

PCI DSS logging requirements without the panic: what Requirement 10 actually asks

A practical engineering view of PCI DSS Requirement 10 — what to log, how long to keep it, daily review, time sync, and log integrity — and how to generate the evidence continuously instead of before the audit.

read →Incident response

A phishing campaign just hit your Microsoft 365 tenant. The first hour.

A practical first-hour runbook for phishing response in Microsoft 365: scoping with message trace, purging delivered mail, blocking the wave, finding who clicked, and containing compromised accounts.

read →