Skip to main content
Insights for direction

For the questions that must be asked
before the incident.

Executive and architectural insights on security, risk and regulation. So organisations don’t just react, but choose direction.

Publications32
ThemesGovernance, RegulationArchitecture, Strategy
RolesCISO, CIO, CFOBoard
Latest update19 May 2026Insight · INS-2026-012

Architecture

Red, purple and blue teams explained

The difference between simulating an attack, defending and rehearsing together, and how to decide what your organisation needs now

Read insight

Governance & Risk

Cyber risk in euros

Read insight

Cross-pillar

The board question no CISO can answer: are we doing enough

Why 'are we doing enough on cyber' is not a question, and which one is

Read insight

Governance

The CISO as architect of trust

Read insight

Architecture

Ransomware doesn't stop at your network perimeter

Why a strong perimeter is not a defence, and what actually works: segmentation, identity validation, immutable backups, tested recovery and a grip on the supply chain

Read insight

Advisory & Programmes

NIS2 liability for directors

Read insight

Architecture

A security test that actually delivers

Read insight

Architecture

Zero Trust, microsegmentation and network segmentation

The difference between the principle and its execution, and why that order is an architectural choice

Read insight

Governance & Risk

Liability and due care, demonstrable

Read insight

Cross-pillar

What a good conversation with a security advisor looks like

A first conversation that delivers something is recognisable by behaviour, not by slides: diagnosis before solution, honest disclosure of interests, and an exit path named from minute one

Read insight

Architecture

Cloud security in hybrid environments

Read insight

Architecture

Passwords are not enough: why MFA still is not everywhere

Read insight

Governance

The illusion of control

Read insight

Governance & Risk

The audit as an objective measurement of where you stand

Read insight

Governance & Risk

Vulnerability management as an operational function, not an annual project

Asset visibility, scanning cadence, prioritisation by exploitability and a remediation SLA as continuous work, not a report delivered once a year

Read insight

Governance & Risk

The AI use in your organisation you cannot see

Read insight

Detection

What agentic AI means for your SOC

AI is changing detection fundamentally. What it means for governance, people and oversight.

Read insight

Architecture

Lateral movement explained

Read insight

Governance & Risk

What an insurer actually does and does not cover

Read insight

Governance & Risk

Third-party risk for organisations without a TPRM team

How to set up a lightweight TPRM function that can handle NIS2 and DORA, without building a department of your own

Read insight

Strategy

The illusion of the security dashboard

Read insight

Advisory & Programmes

SIEM validation

Testing whether your detection rules actually catch what they are meant to catch, continuously and demonstrably

Read insight

Advisory & Programmes

How to choose an MDR, SIEM or XDR without being vendor-led

Read insight

Advisory & Programmes

Detection strategy: why an MDR choice always comes too late without a strategy

Read insight

Governance

Why your CISO is not reaching the board

Read insight

Advisory & Programmes

DORA for financial services firms that haven't finished the deadline work

Read insight

Architecture

CTEM explained

Continuous Threat Exposure Management as a programme, not a platform purchase

Read insight

Strategy

The difference between a security project and a security organisation

Read insight

Advisory & Programmes

NIS2 Article 21: what the ten measures mean in practice

Ten minimum requirements, one programmatic shift: from ticking boxes to demonstrable management

Read insight

Cross-pillar

What a security report is worth when execution stalls

Read insight

Regulation

DORA and NIS2: beyond compliance

Read insight

Cross-pillar

Recognising vendor-independent advice

Three behavioural tests you can use yourself to determine whether a security adviser is genuinely independent, or merely vendor-led in a neutral guise

Read insight
Security is a governance question.
Not a technical question with governance implications.
Our positions

Take a position.
On the questions that matter.

We take positions on the questions that matter in the boardroom conversation about cybersecurity. Not as opinion, but as a grounded perspective from people who sit in those conversations daily.

01

Common viewGovernance means control: document and enforce everything.

Direction determines governance, not control.

A CISO who reports risks and decisions communicates about governance. This determines whether the board listens or merely nods.

02

Common viewBeing compliant means you are secure.

Compliance is the foundation, resilience is the goal.

NIS2, DORA, and the EU AI Act set baseline standards. Organisations that look beyond compliance build sustainable resilience.

03

Common viewYou express risk in colour codes and heatmaps.

Cyber risk is measured in euros.

A threat score says little. A loss range of 1.2 to 4.8 million euros per scenario is telling. FAIR makes decision-making concrete.

04

Common viewScaling fast produces good architecture by itself.

Growth is not architecture.

On average, enterprises use 45 to 76 security tools without design. Resilience requires deliberate architecture, not complex growth.

05

Common viewAn account manager presents the report.

Direct contact with the executor.

At Absolute Security, the architect who creates the report also presents the research. This prevents intermediaries and loss of context.

Want to continue the conversation on these themes?