Security, AI, and the systems behind them — what actually works in practice.https://tinkeringciso.com/https://tinkeringciso.com/articles/security-theater/https://tinkeringciso.com/articles/security-theater/The performance has a budget, a cast, and a recurring booking. The question is whether anyone in the audience is actually safer.Wed, 27 May 2026 00:00:00 GMTstrategygovernancehttps://tinkeringciso.com/articles/friction-is-a-bug/https://tinkeringciso.com/articles/friction-is-a-bug/When the secure path is the hard path, people route around it. Friction is not a virtue signal — it is a defect report.Fri, 01 May 2026 00:00:00 GMTuxzero-trusthttps://tinkeringciso.com/articles/system-of-record/https://tinkeringciso.com/articles/system-of-record/Your security posture is whatever your data hub says it is. If the record is wrong, every downstream decision inherits the error.Mon, 27 Apr 2026 00:00:00 GMTdataidentityhttps://tinkeringciso.com/articles/security-creates-work/https://tinkeringciso.com/articles/security-creates-work/Most security work is the residue of decisions made elsewhere. The interesting question is what it costs the people who have to live inside the control.Sat, 25 Apr 2026 00:00:00 GMTaioperationsgovernance