Articles

Security control validation is the foundation of knowing whether your controls are actually working in real world conditions. This article defines the concept, explores how it differs from control testing or -monitoring, and outlines a pragmatic approach to validating both technical and organizational controls.

Jeroen Prinse (CISO NCSC) over de groei van het NCSC, de spanning tussen compliance en security, en waarom samenwerking in de sector cruciaal is om digitale weerbaarheid echt te vergroten.

Security moet geen onderbuikgevoel zijn. In dit artikel pleit Jeroen Prinse voor een meetbare aanpak van informatiebeveiliging, innovatie met inzicht en een dienstverlenende houding van security professionals.

The article explores Multi-Party Computation (MPC). It highlights how MPC allows multiple parties to compute functions over their private data without ever exposing the data itself, maintaining confidentiality throughout the process.

Interview with the Verbond van Verzekeraars on my experience with and vision on shift security left and secure software development.

Interview with Computest on my take on security testing and experience with Security Assurance.