AI in security: what actually changes
Why AI changes the speed and shape of security work, but not the deeper reality of motivated attackers, layered controls, and accountability.
Writing
Articles for operators using AI in the real world.
These pieces are designed to teach something useful, show how I think, and create a public record of practical work in AI security, cloud architecture, and compliance.
AI Security
Cloud Architecture
Compliance
Article Index
Notes on systems, controls, and delivery.
AI safety, technocrats, and who actually decides
My view on AI safety is less about evil machines and more about sovereigns, financiers, technocrats, and the people who decide where resources and power go.
AI in security: what actually changes
Why AI changes the speed and shape of security work, but not the deeper reality of motivated attackers, layered controls, and accountability.
How an AI security engagement works
A simple diagram-led breakdown of how I scope, inspect, prioritize, and execute security and architecture work.
Why most AI systems fail compliance (and how to fix it)
The common reasons AI products break under ISO 27001 and SOC 2 scrutiny, and the design moves that help.
Local LLMs vs cloud LLMs for regulated environments
How to think about data residency, threat surface, model operations, and where each option fits.
Designing ISO 27001-ready AI infrastructure
What should be true about access, asset boundaries, recovery, evidence, and change control.
The biggest security risks in modern startup architecture
The failure modes I see most often in fast-moving engineering teams and how to address them early.