Learning Centre

The renewal letter you wish you'd had a year ago.

Field notes from policy reviews, claim post-mortems, and 30 years of operating leadership. No fluff. Just what we wish someone had handed us before the breach.

CYBER RENEWAL · 8 min read

What insurers actually look for at renewal — and how to pre-empt every question.

The 14 obligations that show up in 90% of UK cyber wordings. Pre-fill them defensibly.

Read article →
EVIDENCE · 6 min read

MFA enforcement is now an evidence problem, not a deployment problem.

Why "we enabled it" stopped being enough. What proof looks like in 2026.

Read article →
CLAIM ANALYSIS · 11 min read

Anatomy of a denied claim: three real (anonymised) cases.

A finance firm. A construction supplier. A law practice. What each missed.

Read article →
AI GOVERNANCE · 7 min read

Why banning shadow AI fails — and what to do instead.

Discovery, approval, and the small set of policies that actually scale.

Read article →
7 YEAR PLAN · 9 min read

The tri-curve: how one chart changes the IT budget conversation.

Certification, cost, risk — on one canvas. Why directors stop deferring after seeing it.

Read article →
DEFENSIBILITY · 5 min read

Compliance vs. defensibility: the difference that wins claims.

Compliance says you have a policy. Defensibility proves the policy was real.

Read article →

Browse by topic.

Cyber insuranceEvidence engineeringFCA & regulated financeConstruction supply chainLegal & professionalEducationAI governanceM&A integrationTender & procurementMicrosoft CopilotDirector riskOperational resilience7 Year PlanFractional CIOClaim post-mortems

Get one of these in your inbox every other Tuesday.

No spam. No surveillance. Unsubscribe with one click — but you won't want to.

Check my policy Talk to the team