In a recent LinkedIn post, I outlined four simple questions to help leaders assess whether Post Quantum Cryptography (PQC) warrants a place on their agenda, and how urgently. The piece draws on Mosca’s theorem and covers the practical realities most organisations have not yet confronted. You can read the full post below. If your organisation […]
A Standards Reference Model organises security standards into topic-aligned collections that correspond to organisational reality. These create coherence across regulatory, contractual, and policy requirements. Well-drawn topic boundaries enable teams to identify relevant requirements and understand accountability directly. This publication opens Artefakt’s Enterprise Security Architecture series. It explores structural and organisational decisions that deliver clear, navigable, […]
Supply chain contracts are one of the most consequential opportunities an organisation has to shape its security posture across the extended enterprise. The value of well-constructed security obligations lies in shaping supplier behaviour throughout the engagement, long before an incident tests them. The first in our GRC series, this short paper examines the principles and […]