Practical guidance based on 20+ years in security leadership and the work of taking a crypto company public.
The 5 areas that generate the most friction in Series B security diligence. What investors actually look for, and how to pass the test before they ask.
Based on 20+ investor diligence calls and the security program that took a crypto company public via SPAC and IPO.
Deep dives on the topics that keep operators and investors up at night.
Most crypto companies fail SOC 2 on key management and access control — not because they're sloppy, but because the auditor doesn't understand digital assets. Here's how to evaluate whether your auditor understands your business model before you waste $30K.
Read more →A founder told me his Series B term sheet was delayed 6 weeks because of one security question. Not a breach. Not a failed audit. Just a question he couldn't answer well. Here's what it was, and how to make sure you're not the next story.
Read more →I send one practical security briefing per month — no fluff, no product pitches, just what I'm seeing across diligences, audits, and boardrooms.
Join the List