Books & Writing
I write about how organizations make decisions under pressure — and what breaks when governance exists in theory but not in practice.
The Capability Debt
Why AI Is Exposing What Organizations Never Built
AI doesn’t fail organizations. It exposes what was never real.
The Capability Debt reframes AI risk as an organizational problem, not a technical one — showing why policies, training, and frameworks collapse under speed, and what it actually takes to govern high‑consequence systems at scale.
This book introduces enforceable operating standards: decision rights written in verbs, proof‑based governance, go‑live gates, and board‑level visibility that demands evidence instead of reassurance.
→ Amazon
Seatbelts, Not Force Fields
Why Organizations Get It Wrong—and What Actually Makes Them Safer
Seatbelts, Not Force Fields reframes security as harm reduction, not risk elimination. Using plain language and real organizational patterns, the book challenges the myths that drive security theater — certainty, compliance as protection, and “just train the users.” It argues for adult security conversations that accept residual risk, prioritize usability, and focus on detection, recovery, and trust when things inevitably go wrong.
→ Amazon
Security for Grown-Ups
How to Stay Safe Online Without Losing Your Mind
A practical guide for everyday adults and leaders navigating modern security risks without fear‑mongering or jargon. This book translates complex security concepts into decisions people can actually make — without assuming technical expertise.
→ Amazon