Mapping Cyber Risk Approaches: Bridging Quantification and Scoring

The diverse landscape of cyber risk methodologies, ranging from technical scoring systems like CVSS to financial quantification frameworks like FAIR, offers organisations multiple tools to manage threats. However, these tools often operate in isolation, creating challenges when aligning technical, operational, and financial risk perspectives. Mapping between these approaches bridges the gaps, enabling organisations to unify risk management strategies and enhance decision-making.

Continue reading

Goodbye Anne Marie

So Monday we said goodbye to Anne Marie, sadly taken from us and her loving family too quickly.

Sorry I wasn’t always there, Anne. I’ll see you on the other side.

Thanks to Nick and Teresa and Grace and all Anne’s family and friends. Bless you all.

Continue reading
CyberASAP 2025 - Day 1 - photo by Sevgi Aksoy

Inside the CyberASAP 2025 Kickoff: Mentoring, Learning, and Supporting the Next Generation of Academic Cyber Innovators

I recently attended the CyberASAP Year 9 Kickoff as a mentor, and also took the opportunity to experience the first two days alongside the academic teams to better understand what they go through. This blog captures my reflections from all three days, covering IP, value propositions, stakeholder mapping, and some of the truly impressive innovations coming from UK universities. It also looks at the history and purpose of the programme and why it continues to matter in bridging the gap between research and real-world impact.

Continue reading

A Beginner’s Guide to Cyber Risk Scoring

Cyber risk scoring is a critical tool for organisations to measure their cybersecurity posture, prioritise risk mitigation efforts, and communicate threats effectively. Unlike broader risk quantification methods, which often involve financial modelling and probability analysis, cyber risk scoring assigns a numerical or categorical value to risks based on their severity, likelihood, and potential impact.

Continue reading

The Memory and Noise Tetrology

What began as an exploration of two strange non-songs, “Apes Ma” and “Fitter Happier”, quickly unfolded into something larger: a meditation on memory, loss, defiance, and the strange work of sound in the spaces where meaning breaks down.

This tetralogy gathers three connected essays and the one you are reading now, not as conclusions, but as echoes. Not as closures, but as signals still carrying across time.

Continue reading

Do Not Go Quietly into That Dark Night: A Response to Two Sides of the Same Coin

A quiet manifesto for memory, resistance, and the voices that refuse to vanish. From whispered warnings to machine-read prophecies, this piece explores how songs like “Apes Ma”, “Fitter Happier”, “Trans Am”, and “Can’t Put Your Arms Around a Memory” carry defiance through static, grief through silence, and presence through time.

Continue reading

The Veil, the Soul Mirror, and Reflective Chrome Ghosts: On Memory, Music, and the Ones We Carry Onwards

Some works don’t end. They echo. “Apes Ma” and “Fitter Happier” gave us the edge of language, the moment just after sense unravels. But what follows? What lingers in the silence after the static? What shapes itself in the quiet? Memory. Not the nostalgic kind. Not warmth. Something stranger. Something inherited. Every time I hear “New Rose”, Dave, I salute you, brother.

Continue reading

Two Sides of the Same Coin: Captain Beefheart’s “Apes Ma” and Radiohead’s “Fitter Happier”

Some works scream. Others whisper. “Apes Ma” and “Fitter Happier” do both in a frequency that bypasses the conscious brain. What remains is a residue. A shape. A hush at the end of language. An old lover kisses slow, dayglo blue scorpions.

Continue reading

More Gaming Bollocks: The Hype, Scams, and Unrealistic Promises of the Gaming Industry

The gaming industry has transformed into a multibillion-dollar behemoth, with blockbuster releases, competitive esports, and sprawling virtual worlds dominating the cultural zeitgeist. But behind the glitz, glamour, and explosive trailers lies a reality filled with overpromises, shady practices, and outright nonsense.

Continue reading

A History of Cyber Risk Quantification

The field of cyber risk quantification has undergone significant evolution, mirroring the increasing complexity of digital ecosystems and the growing importance of cybersecurity in modern organisations. Quantifying cyber risk is the process of assessing the likelihood of threats and estimating their impact, often in monetary or operational terms. Over time, this discipline has expanded from basic technical assessments to sophisticated financial and probabilistic models that inform decision-making at all organisational levels.

Continue reading

Innovation Incoming in Space: Notes from the Royal Academy of Engineering Panel, 31 March 2025

The Royal Academy of Engineering’s Innovation Incoming in Space (31 March 2025, Prince Philip House) offered an insightful and fact-rich exploration of the technologies shaping the future of the space economy. With topics ranging from space-based solar power and crystallisation in orbit to modular infrastructure and lunar habitation, the panel discussed how innovation is driving space from the experimental to the operational. Set against the backdrop of geopolitical shifts and commercial competition, the event underscored the UK’s strategic opportunity to lead in agile engineering, cyber resilience, and space-enabled industrial capability. A dawning theme throughout the evening was the growing realisation that space is becoming commercial, contested, and critically dependent on cyber resilience.

Continue reading

The 21st Century Digital Age: Big Data and AI in Risk Quantification

The 21st century has witnessed an unprecedented transformation in risk quantification, driven by rapid advancements in technology. Big data and artificial intelligence (AI) have revolutionized the field, enabling real-time analysis, predictive modelling, and enhanced decision-making. These technologies have expanded the scope of risk assessment to address emerging challenges such as climate change, cyber threats, and global pandemics. This essay explores the pivotal role of big data and AI in risk quantification, highlighting key developments, applications, and implications for the future.

Continue reading

More Deepfake Bollocks: Myths, Misconceptions, and Media Hysteria

Deepfake technology, the ability to create hyper-realistic fake videos or audio using AI, has become a lightning rod for controversy. We’ve been warned about deepfakes undermining democracy, destroying reputations, and spreading disinformation on an unprecedented scale. From sensational media headlines to outlandish claims of its capabilities, the narrative around deepfakes is often fuelled by a mix of fear, hype, and outright bollocks.

Continue reading

The 20th Century: The Age of Modern Risk Management

The 20th century ushered in profound transformations in the way risk was understood, assessed, and managed. With advances in computing, mathematics, and statistics, risk management evolved into a distinct discipline, influencing fields ranging from finance and engineering to insurance and regulatory policy. This essay explores the major developments in 20th-century risk management, focusing on key innovations, concepts, and frameworks that continue to shape contemporary practices.

Continue reading

Conway Hall: A Sanctuary for Free Thought, Humanism, and Intellectual Progress

Conway Hall in London has been a cornerstone of humanist thought, secular ethics, and progressive culture since 1929. As the home of the world’s oldest surviving freethought organisation, it has hosted generations of thinkers, activists, and musicians, from George Orwell to modern-day philosophers. This article explores the rich history, architectural significance, cultural impact, and enduring relevance of this unique venue.

Continue reading

Professionalising Cyber: Reflections from Conway Hall

A first-hand reflection on the UK Cyber Security Council’s recent “The Journey to Professionalisation” event at Conway Hall, exploring the ongoing professionalisation of the cyber security sector. Highlights include the expansion of recognised specialisms, the development of the UK Cyber Skills Framework, and discussions on AI, early-career challenges, and the need for a more inclusive, realistic skills framework to support a growing cyber economy.

Continue reading

The Industrial Revolution: Quantification Meets Engineering

The Industrial Revolution, spanning the late 18th and 19th centuries, marked a seismic shift in human history. This period of rapid technological advancement, urbanization, and industrialization brought with it both opportunities and unprecedented challenges. As societies grappled with the complexity of large-scale infrastructure projects, mechanized production, and financial markets, the quantification of risk became an essential tool for decision-making. This essay explores how the Industrial Revolution catalyzed the integration of probability, statistics, and engineering into risk assessment, laying the groundwork for modern practices in safety, reliability, and financial risk management.

Continue reading

More Cloud Computing Bollocks: Myths, Missteps, and Overblown Claims

Cloud computing has become the backbone of modern technology, powering everything from streaming services and apps to enterprise infrastructure. It promises flexibility, cost savings, and scalability that were unimaginable a decade ago. But like any hyped technology, cloud computing is surrounded by its fair share of misconceptions, overpromises, and, yes, bollocks.

Continue reading

The Enlightenment: Formalizing Risk Assessment

The Enlightenment, spanning the 17th and 18th centuries, was a transformative period in intellectual and scientific history. During this era, humanity began to apply rational thought, empirical observation, and mathematical rigor to address questions of uncertainty and risk. The formalization of risk assessment emerged as a critical outcome of this intellectual revolution, driven by advancements in actuarial science, economics, and probability theory. This essay explores the key contributions of the Enlightenment to the field of risk assessment, highlighting pivotal figures, innovations, and ideas that continue to shape our understanding of risk today.

Continue reading

Happy St. Patrick’s Day 2025 – Remembering Old Friends and Goodbye to Anne Marie Davies

St. Patrick’s Day has always been more than just a date on the calendar. It’s a time for gathering, for stories, for laughter, and for remembering. Over the years, I’ve celebrated many a St. Patrick’s Day. And many of those at the Village Maid pub in Handsworth, once a place filled with music, laughter, and the warmth of familiar faces. But like so many things, the Village Maid is gone now, just another memory of a time that once was.

Continue reading