Work
Outcomes That Move The Business
21+ years scaling security, DevOps, and platform teams. Real outcomes — HITRUST certifications, AI governance programs, vendor risk at scale — not slideware.
Request More Info
Case Studies & Practice
Deep dives on the programs and decisions behind the outcomes.
Experience
Case studies
Cloud, DevOps & infra
Fintech & finance
Now
Open Source
Code that's shipped to production.
GitHub repos
Writing
Field Notes On Security & Velocity
Essays, briefings, and short notes on what's actually working in security, AI governance, and high-velocity engineering teams.
Subscribe
Long Form
Essays and deep dives on security, AI, and growth.
All posts
Table of contents
By topic: AI & Governance
By topic: Security & GRC
By topic: Cloud & DevOps
By topic: Fintech & Finance
Short Form
AI news with my takes and the newsletter.
AI news + my takes
Newsletter archive
Subscribe
Get new pieces in your inbox or your reader of choice.
Email newsletter
RSS feed
JSON feed
AI
AI, Hands-On Not Hand-Wavy
Curated AI news with my takes, plus the free calculators and tools I use with CIOs and AI architects every week.
Explore the Tools
News & Commentary
What's shipping in AI, with an operator's take.
AI news + my takes
Interactive Tools
Calculators and pickers you can use right now.
All free tools
AI ROI calculator
LLM cost estimator
Model picker quiz
Ask & Search
Query my work directly or search the whole site.
Ask Michael (AI)
Search the site
About
Operator, Advisor, Builder
Security executive, UC Berkeley MICS, board advisor, and builder. Here's the background, credentials, and personal context behind the work.
Read Full Bio
Background
Bio, education, and how I got here.
Bio
Now
Credentials
Degrees, certifications, and advisory roles.
Education & certifications
Elsewhere
Open source and code outside of work.
GitHub
Connect
Let's Build Something Together
Intro calls, strategy sessions, advisory engagements, or a quick question — pick the channel that fits and we'll go from there.
Book a Call
Work Together
Start a conversation or book time directly.
Contact form
Book time
Direct Channels
Email and LinkedIn are the fastest ways to reach me.
Email
LinkedIn
Recruiters & Boards
The 60-second one-pager and advisory & board interest.
Executive one-pager
Advisory & board interest
Resume (PDF)

Open to board advisory and board seats — 2H 2026, then CY 2027–2028.· AI governance, security, and platform · Forward-looking interest — not a current board seat

See details →

SavvyMoney ·

Making Security a Sales Asset

Built the program so its maturity could be demonstrated up front — external attestations, a documented control environment, and a recurring intelligence offering — turning security from a deal-blocker into part of the pitch.

Back to all work

The problem

In regulated financial services, prospective partners run intense due diligence before they'll integrate with a vendor. Security is often where deals slow down or die.

The approach

Rather than treating security as a hurdle to clear at the end of a sales cycle, I built the program so its maturity could be demonstrated up front — external attestations, a documented control environment, and a recurring intelligence offering that gives partners something of ongoing value. Security moved from "the team that says no" to part of the pitch.

The outcome

A demonstrable, continuously-audited posture that shortens diligence and becomes a reason partners choose us. The lesson generalizes: in trust-based industries, provable security is a growth lever.

Security StrategyFintechGRC