APIs are already the dominant attack surface. Agentic AI changes the threat model because the caller is now an autonomous agent — so the question shifts from authenticating the user to verifying the intent, scope, and blast radius of a call.
Writing
Essays, posts, and articles — things I wrote, wherever they live.
2026 — 5 posts
Governance fails when it's a document instead of an operating model. The real decisions: where governance sits, what gets a human gate, why data governance is the foundation, and how to move from principles to enforcement without grinding delivery to a halt.
Why the build-vs-buy decision is never binary, how to think about total cost of ownership, and the hybrid approach that actually works in practice.
The economics of API vs self-hosted AI inference, where the crossover point sits, and why the hybrid approach wins for most production workloads.
The architecture patterns behind AI that takes action, not just answers questions. Single agents, multi-agent orchestration, human-in-the-loop, and a worked example.
2025 — 3 posts
How hyperscaler pricing models and data egress fees constrain innovation, and why portable architectures, distributed systems, and open ecosystems are the way forward.
Why cloud cost depends on architecture and workload shape rather than scale, and how distributed models outperform hyperscale for AI-driven, data-gravity-bound workloads.
How organisations across Europe, the Middle East, and Africa balance innovation with economic constraints through AI, edge computing, and distributed architectures.
2024 — 2 posts
How Progressive Web Apps leverage distributed and edge cloud services for faster load times, offline resilience, and improved user experiences.
Comparing serverless and serverful computing paradigms — the trade-offs between simplicity and cost versus control and customisation.
2021 — 1 post
A guide to business proposal types — RFP, RFQ, IFB, RFI — and their role in procurement, with a focus on customer value and clear communication.