This section contains written analysis on security, technology risk and governance.

The focus is on how decisions fail in practice, particularly where complexity, automation and uncertainty expose gaps between policy, control and reality.

These pieces are not intended as prescriptive guidance, but as structured reasoning for leaders and practitioners who want to think more clearly about risk.

Stop Securing Words, Start Securing Math: The Shift from Deterministic to Probabilistic Defence

Michael Batley 11/1/26 Michael Batley 11/1/26

Stop Securing Words, Start Securing Math: The Shift from Deterministic to Probabilistic Defence

Read More

The Framing Problem: Converting Subjective Cyber Risk into Objective Financial Terms

Michael Batley 27/12/25 Michael Batley 27/12/25

The Framing Problem: Converting Subjective Cyber Risk into Objective Financial Terms

Read More

The Maturity Trap: The False Confidence of Maturity Models

Michael Batley 26/12/25 Michael Batley 26/12/25

The Maturity Trap: The False Confidence of Maturity Models

Read More