Security &amp; Infrastructure

Offboarding Risk Profiler

Email Deliverability Scanner

AI & Automation

AI Readiness Scan

NEW

Workflow ROI Calculator

Engineering

DevEx Maturity Scan

Ops LogEngineering journal HandbookGuides and docs Exit KitFull ownership handover

Quick Links

Workshop

Architecture & Security Design

€499 · 5-day written deliverable

Start a brief →

Ops Log About

Start a Brief

Home/Ops Log/Security & Infrastructure

← Ops Log

Stream · 10 reports

Security & Infrastructure

Enterprise-grade multi-cloud architecture, SIEM, and zero-trust security. We design, migrate and operate production workloads that stay secure and compliant.

All Streams AI & Automation Modern Workspace Security & Infrastructure10 results

Level

Access

Clear all

Security & InfrastructureGated Intel

NIS2 Compliance for IT Service Providers: The Practical Checklist

Other streams

Browse adjacent terrain

Ops Log · Weekly

One report per week. Zero fluff.

Pragmatic field reports on infrastructure, cloud economics, security posture and platform engineering — straight to your inbox.

Practitioner-written — no content marketing filler
Includes config snippets and real architectures
Unsubscribe anytime with one click

Business email only. Confirmation email sent. Every email has a one-click unsubscribe.

A 47-item operational checklist mapping Article 21 risk-management measures, the 24-hour incident-reporting clock, supply-chain obligations, and board-level personal accountability under NIS2 — for the IT service providers caught in scope.

01 MAY 2026Practitioner

The 2026 Cloud Posture Audit: 12 Misconfigurations We Find in Every AWS Account

A field-tested audit checklist of the 12 findings present in 9 out of 10 AWS account audits — IAM, networking, logging, KMS, SCPs, and the contextual misconfigurations CSPM tools still miss in 2026.

26 APR 2026Practitioner

Security & InfrastructureGated Intel

ISO 27001 Certification Journey: What Nobody Tells You About the Audit

What three completed ISO 27001 certifications taught us about the real timeline, the scope decision, the Annex A controls that trip up first-time projects, what auditors actually do during Stage 1 and Stage 2, and the post-certification operating cost nobody budgets.

15 MAY 2026Practitioner

Incident Response Playbook for SMBs: From Alert to Resolution in 4 Hours

A working incident-response playbook for the SMB that cannot afford a 24/7 SOC: five phases, severity-graded alerting matrix, six scenario containment playbooks, and the five pre-incident artefacts that have to exist before the alert fires.

13 MAY 2026Deep dive

Security & InfrastructureGated Intel

Employee Offboarding Security: The 47-Point Checklist That Prevents Data Leaks

The 47-point offboarding checklist covering identity, email, SaaS, devices, communication, compliance, and HR. Three escalation tiers (standard / sensitive / hostile), the HRIS-driven workflow, and the structured evidence record that becomes audit proof.

11 MAY 2026Practitioner

DORA Compliance for Financial Services: An IT Consultant's Field Guide

The practitioner field guide to DORA for financial services: five pillars, the 4-hour incident clock, Article 28 third-party requirements, the control function obligation, and the cost reality from three real implementations.

09 MAY 2026Deep dive

Identity-First Security: Why Your Firewall Is No Longer the Perimeter

The perimeter dissolved. Identity is the new perimeter. The introduction for the IT lead who wants to know what the shift actually means for the next 90 days of work — five operational consequences and five concrete next steps.

07 MAY 2026Intro

Cloud Cost Optimization: How We Cut a Client's Azure Bill by 42%

How we cut a 200-seat FinTech's Azure run-rate by 42% in six months — the eight specific levers (RIs, right-sizing, SQL elastic pools, storage lifecycle, SSD tier, Sentinel ingestion, egress, auto-shutdown), the tagging programme that made the savings durable, and the operate cadence that kept them.

05 MAY 2026Practitioner

Microsoft 365 Security Hardening: 15 Settings Most Admins Miss

Fifteen Microsoft 365 settings that turn up wrong in every tenant we audit — identity, email, data protection, and the often-missed Conditional Access policies — with the exact admin paths, side effects, and the 90-minute version for the IT lead with time today.

03 MAY 2026Intro