Co-Founder & CTO, Simbian
I write first-principles explainers for security leaders navigating the shift to autonomous operations - no corporate speak, no fluff.
Why traditional SOCs are breaking down, and what autonomous security actually looks like.
First-principles thinking on how AI agents are reshaping security engineering from the ground up.
Lessons from building a security startup - technical decisions, leadership, and the messy middle.
Maliciousness isn't an inherent property of an event - it's a property of its relationship to future context. Every dismissed alert is a liability on your balance sheet.
Every time you tune a detection rule to silence a noisy alert, you're hard-coding a blind spot. We're trading false positives for false negatives.
AI's expanding context windows sound like a defensive breakthrough. In reality, they're structurally easier for attackers to exploit - attackers save the whole board state while defenders rebuild from fragments every move.