01
One identity, everywhere
SSO is non-negotiable. Every tool — Slack, Figma, GitHub, your accounting suite — behind one identity provider. The day you offboard someone, one click revokes the entire stack.
← DAILY DOSSIER
CYBER·02 / 04 / 2026·7 MIN
Zero-trust for studios under twenty people.
Enterprise security frameworks are written for enterprises. Here is the version that actually fits a creative studio of fifteen — without slowing anyone down.
02
Hardware keys, not SMS
For founders, finance and admins: physical security keys (YubiKey or equivalent). They cost €50 each and stop 99% of credential-phishing in its tracks.
03
Backups you have actually restored
An untested backup is a wish. Once a quarter, restore something for real — a database, a shared drive — and time it. If it takes three days, your “backup” is theatre.
04
A one-page playbook
A printed, single-page incident playbook on the wall: who to call, what to unplug, what NOT to say publicly in the first hour. If it doesn’t fit on one page, no one will read it at 3am.
— THE BOTTOM LINE
You don’t need a CISO. You need four good habits, written down, audited twice a year.
CYBER · BY APPOINTMENT
REQUEST BRIEFING ↗