Writing about product, security, and whatever else is on my mind.https://irlutsav.com/en-gbhttps://irlutsav.com/writing/2026-05-09-terminal-as-the-workbench/https://irlutsav.com/writing/2026-05-09-terminal-as-the-workbench/SOC platforms spent years building the 'single pane of glass'. OpenCode, Claude Code, and Codex built it in a terminal. The analysts who noticed are not waiting around.Sat, 09 May 2026 00:00:00 GMThttps://irlutsav.com/writing/2026-05-08-what-it-means-to-be-a-pm/https://irlutsav.com/writing/2026-05-08-what-it-means-to-be-a-pm/Shreyas Doshi's definition of a PM is the best I've found. But AI has added a dimension to it that changes what the job actually looks like day to day.Fri, 08 May 2026 00:00:00 GMThttps://irlutsav.com/writing/2026-05-01-false-positive-problem/https://irlutsav.com/writing/2026-05-01-false-positive-problem/SOC teams don't have an alert volume problem. They have a fidelity problem. Those are different things, and the fix is different too.Fri, 01 May 2026 00:00:00 GMThttps://irlutsav.com/writing/2026-04-15-pm-in-operator-products/https://irlutsav.com/writing/2026-04-15-pm-in-operator-products/Everyone says 'talk to your users'. Fewer PMs mean sitting inside the team that does the work every day and letting that reshape the roadmap.Wed, 15 Apr 2026 00:00:00 GMThttps://irlutsav.com/writing/2026-03-10-velocity-and-ai/https://irlutsav.com/writing/2026-03-10-velocity-and-ai/AI doesn't just make individual tasks faster. It changes what a small team can credibly take on. That changes the PM's job.Tue, 10 Mar 2026 00:00:00 GMThttps://irlutsav.com/writing/2026-03-01-platform-thinks-analyst-decides/https://irlutsav.com/writing/2026-03-01-platform-thinks-analyst-decides/The right division of labour between AI and humans in security operations. What to automate, what to surface, and why the reasoning must always be visible.Sun, 01 Mar 2026 00:00:00 GMThttps://irlutsav.com/writing/2026-02-03-the-fidelity-flywheel/https://irlutsav.com/writing/2026-02-03-the-fidelity-flywheel/Closing alerts is table stakes. The best operators are the ones who make the queue smarter over time. That only works if the platform makes tuning frictionless.Tue, 03 Feb 2026 00:00:00 GMThttps://irlutsav.com/writing/2025-10-11-one-surface-no-context-switches/https://irlutsav.com/writing/2025-10-11-one-surface-no-context-switches/When a security analyst has to move between eight tools to close a single case, that is not a process problem. It is a product failure.Sat, 11 Oct 2025 00:00:00 GMThttps://irlutsav.com/writing/2025-10-10-four-types-of-security-operator/https://irlutsav.com/writing/2025-10-10-four-types-of-security-operator/Security operations is not a single job. It is a spectrum of people asking completely different questions with the same data. Building for all of them requires understanding which one to serve first.Fri, 10 Oct 2025 00:00:00 GMThttps://irlutsav.com/writing/2025-10-09-introducing-react/https://irlutsav.com/writing/2025-10-09-introducing-react/Cloudforce One launches REACT, a team of expert security responders that eliminates the gap between perimeter defense and internal incident response. Network-native mitigation, vendor-agnostic scope, and threat intelligence built into every engagement.Thu, 09 Oct 2025 00:00:00 GMThttps://irlutsav.com/writing/2024-08-15-security-tools-tolerance/https://irlutsav.com/writing/2024-08-15-security-tools-tolerance/Operators don't leave their incumbent platforms because they love them. They stay because switching costs are real. That changes how you should think about building in this space.Thu, 15 Aug 2024 00:00:00 GMThttps://irlutsav.com/writing/2024-07-12-security-in-six-nist-20/https://irlutsav.com/writing/2024-07-12-security-in-six-nist-20/The updated NIST CSF reorganises cybersecurity into six core functions, with Govern as the new first step. A look at why governance now leads the conversation, and what that means for how organisations approach security.Fri, 12 Jul 2024 00:00:00 GMThttps://irlutsav.com/writing/2024-04-29-nist-2-framework-for-all/https://irlutsav.com/writing/2024-04-29-nist-2-framework-for-all/The updated NIST Cybersecurity Framework is no longer just for federal agencies or critical infrastructure. It is now designed for any organisation managing cyber risk, and the new Govern function changes how security fits into enterprise strategy.Mon, 29 Apr 2024 00:00:00 GMT