For the questions that must be asked
before the incident.
Executive and architectural insights on security, risk and regulation. So organisations don’t just react, but choose direction.
Architecture
Red, purple and blue teams explained
The difference between simulating an attack, defending and rehearsing together, and how to decide what your organisation needs now
Read insightGovernance & Risk
Cyber risk in euros
Read insightCross-pillar
The board question no CISO can answer: are we doing enough
Why 'are we doing enough on cyber' is not a question, and which one is
Read insightGovernance
The CISO as architect of trust
Read insightArchitecture
Ransomware doesn't stop at your network perimeter
Why a strong perimeter is not a defence, and what actually works: segmentation, identity validation, immutable backups, tested recovery and a grip on the supply chain
Read insightAdvisory & Programmes
NIS2 liability for directors
Read insightArchitecture
A security test that actually delivers
Read insightArchitecture
Zero Trust, microsegmentation and network segmentation
The difference between the principle and its execution, and why that order is an architectural choice
Read insightGovernance & Risk
Liability and due care, demonstrable
Read insightCross-pillar
What a good conversation with a security advisor looks like
A first conversation that delivers something is recognisable by behaviour, not by slides: diagnosis before solution, honest disclosure of interests, and an exit path named from minute one
Read insightArchitecture
Cloud security in hybrid environments
Read insightArchitecture
Passwords are not enough: why MFA still is not everywhere
Read insightGovernance
The illusion of control
Read insightGovernance & Risk
The audit as an objective measurement of where you stand
Read insightGovernance & Risk
Vulnerability management as an operational function, not an annual project
Asset visibility, scanning cadence, prioritisation by exploitability and a remediation SLA as continuous work, not a report delivered once a year
Read insightGovernance & Risk
The AI use in your organisation you cannot see
Read insightDetection
What agentic AI means for your SOC
AI is changing detection fundamentally. What it means for governance, people and oversight.
Read insightArchitecture
Lateral movement explained
Read insightGovernance & Risk
What an insurer actually does and does not cover
Read insightGovernance & Risk
Third-party risk for organisations without a TPRM team
How to set up a lightweight TPRM function that can handle NIS2 and DORA, without building a department of your own
Read insightStrategy
The illusion of the security dashboard
Read insightAdvisory & Programmes
SIEM validation
Testing whether your detection rules actually catch what they are meant to catch, continuously and demonstrably
Read insightAdvisory & Programmes
How to choose an MDR, SIEM or XDR without being vendor-led
Read insightAdvisory & Programmes
Detection strategy: why an MDR choice always comes too late without a strategy
Read insightGovernance
Why your CISO is not reaching the board
Read insightAdvisory & Programmes
DORA for financial services firms that haven't finished the deadline work
Read insightArchitecture
CTEM explained
Continuous Threat Exposure Management as a programme, not a platform purchase
Read insightStrategy
The difference between a security project and a security organisation
Read insightAdvisory & Programmes
NIS2 Article 21: what the ten measures mean in practice
Ten minimum requirements, one programmatic shift: from ticking boxes to demonstrable management
Read insightCross-pillar
What a security report is worth when execution stalls
Read insightRegulation
DORA and NIS2: beyond compliance
Read insightCross-pillar
Recognising vendor-independent advice
Three behavioural tests you can use yourself to determine whether a security adviser is genuinely independent, or merely vendor-led in a neutral guise
Read insightNot a technical question with governance implications.
Take a position.
On the questions that matter.
We take positions on the questions that matter in the boardroom conversation about cybersecurity. Not as opinion, but as a grounded perspective from people who sit in those conversations daily.
Common viewGovernance means control: document and enforce everything.
Direction determines governance, not control.
A CISO who reports risks and decisions communicates about governance. This determines whether the board listens or merely nods.
Common viewBeing compliant means you are secure.
Compliance is the foundation, resilience is the goal.
NIS2, DORA, and the EU AI Act set baseline standards. Organisations that look beyond compliance build sustainable resilience.
Common viewYou express risk in colour codes and heatmaps.
Cyber risk is measured in euros.
A threat score says little. A loss range of 1.2 to 4.8 million euros per scenario is telling. FAIR makes decision-making concrete.
Common viewScaling fast produces good architecture by itself.
Growth is not architecture.
On average, enterprises use 45 to 76 security tools without design. Resilience requires deliberate architecture, not complex growth.
Common viewAn account manager presents the report.
Direct contact with the executor.
At Absolute Security, the architect who creates the report also presents the research. This prevents intermediaries and loss of context.































