Blog Archive
Sections
- Foundation (Core Philosophy)
- Implementation Framework
- Leadership & Strategy
- Specialized Applications
- Survivability Engineering
- Brutalist Security Team
- Questions From Readers
- The Rest
- Tools
Reflections
- Zen
- Philosophical Musings
- The Brutalist Grid: A Cyberpunk Story
- Lines in the Sand: A Security Brutalism Story
- Mythos, the Patch Ceiling and Survivability Engineering
Foundation (Core Philosophy)
- 2025-05-04 Form Follows Function. Security Follows Form.
- 2025-05-14 What Is Security Brutalism?
- 2025-05-14 Security Brutalism Presentations
- 2025-04-16 A Brutalist Approach to Security Teams
- 2025-05-20 Security Brutalism Fundamental Controls
- 2025-04-24 Security Brutalism and VUCA
- 2025-05-25 The 7 Cs of Security Brutalism
- 2025-05-30 Entropy Always Collects Its Debt
- 2025-06-01 What You Cannot Simplify, You Must Contain. What You Cannot Contain, You Must Kill.
- 2025-06-09 The Doctrine of Security Brutalism
- 2025-08-01 Security Brutalism Truths
- 2025-08-31 Security Brutalism Presentation: Doctrine Not Tools
- 2025-09-09 The Laws of Security
- 2025-11-27 Security Brutalism meets the World of AI
- 2026-01-10 Threat Modeling and Brutalist Security Practices
- 2026-01-22 Simplicity As A Security Discipline
- 2026-03-06 Security Is What Survives Contact With Reality
Implementation Framework
- 2025-05-15 Building A Brutalist Security Program: A Complete Guide
- 2025-06-03 The Security Brutalist’s Guide to Basic Security Hygiene
- 2025-07-15 The Brutalist Guide to Defining Your Security Posture in 5 Sentences or Less
- 2025-10-25 Scaling Brutalism: How Small Security Teams Scale Like Startups
- 2026-07-10 Basic Security Brutalist Controls
Leadership & Strategy
- 2025-05-02 Brutalist Security Meets Team of Teams: Introduction
- 2025-05-03 Brutalist Security Meets Team of Teams: Implementation Guide
- 2025-05-11 The Brutalist Way of Security
- 2025-05-23 Security Brutalism: A CISO's Guide to Operational Clarity
- 2025-05-25 The Economics of Brutalist Security: Why Simple Beats Sophisticated
- 2025-06-01 Digging Through Digital Ruins: The Problem of Security Archaeology
- 2025-06-14 Brutalist Security: Five Principles for Executives
- 2025-08-21 Purpose or Attack Surface
Specialized Applications
- 2025-04-21 A Brutalist Approach to Identity and Access Management
- 2025-06-05 The Brutalist Vendor Security and Risk Management
- 2025-09-04 Security Brutalism and Privacy: A Unified Approach, Part 1
- 2025-10-21 Security Brutalism and Privacy: A Unified Approach, Part 2
- 2025-11-10 Security Brutalism and Privacy: A Unified Approach, Part 3
Survivability Engineering
- 2026-03-05 Survivability Engineering, Part 1: Risk Assessment
- 2026-03-17 Survivability Engineering, Part 2: How To Talk About Security Risk
- 2026-03-19 Survivability Engineering, Part 3: AI and the New Tech
- 2026-03-21 Survivability Engineering, Part 4: Threat Modeling with Reality
- 2026-03-24 Survivability Engineering, Part 5: Chaos and Red Teaming
- 2026-03-26 Survivability Engineering, Part 6: Surviving Reality
- 2026-04-06 Security Brutalism Under Real Conditions, Part 1: Introduction
- 2026-04-07 Security Brutalism Under Real Conditions, Part 2: The Framework
- 2026-04-08 Security Brutalism Under Real Conditions, Part 3: Knowing What You Have
- 2026-04-09 Security Brutalism Under Real Conditions, Part 4: Building the Program
- 2026-04-27 Security Brutalism Under Real Conditions, Part 4.5: Scoping Confidence
- 2026-04-10 Security Brutalism Under Real Conditions, Part 5: The Active Layer and Agents
- 2026-04-10 Security Brutalism Under Real Conditions, Part 6: Starting from Zero
- 2026-04-11 Security Brutalism Under Real Conditions, Part 7: Where This Goes Next
- 2026-04-11 Security Brutalism Under Real Conditions: Building the Consequence Map
- 2026-04-28 Applying Security Brutalism, A Playbook for Leadership and Practitioners. Part 1: For Security and IT Leadership
- 2026-04-28 Applying Security Brutalism, A Playbook for Leadership and Practitioners. Part 2: For Security Architects and Engineers
Brutalist Security Team
- 2026-03-01 Security Brutalism: Four Roles In A Team
- 2026-03-01 Security Engineer: From Ticket Taker to Ruthless Simplifier
- 2026-03-01 Security Architect: From Frameworks to Foundations
- 2026-03-02 Incident Responder / SOC Engineer: From Alert Volume to Fast Contact
- 2026-03-02 Security Team Manager: From Program Optics to Survivability
Questions From Readers
- 2025-06-09 Minimalist Brutalist Security Program
- 2025-06-30 Identify and Eliminate Unnecessary Security Layers
- 2025-07-04 Implement Security Brutalist Controls
- 2025-07-13 Security Brutalism: Reducing Complexity
- 2025-09-12 Perfect Plans vs Real Programs
The Rest
- 2025-03-23 The Security Brutalist’s Mindset
- 2025-05-05 Beyond the Fluff: Security Stripped Bare
- 2026-02-13 New Tshirts to support the site
Tools
- 2025-03-23 Security Brutalist Assessment Tool
- 2026-06-12 Rapid Risk Image Tool
- 2026-06-14 The CISO Assembly