Why We’re Launching The Monday Brief
Turning cybersecurity signals into confident decisions. Every Monday, we translate the most important signals from the past week into the decisions leaders need. By Ismael Valenzuela and Doug McKee.
Cybersecurity is drowning in signals, but starving for judgment.
Every week, the industry produces an overwhelming volume of information. Breaches, vulnerabilities, AI announcements, geopolitical shifts, threat reports, hot takes. There’s no shortage of signals.
What’s missing is help answering the harder questions: Which of these signals actually matter? Why do they matter now? And how should leaders talk about them with confidence?
Between the two of us, we’ve spent decades on opposite but complementary sides of this problem. We’ve broken systems, defended systems, designed architectures, exploited vulnerabilities, tracked threat actors, responded to incidents, and briefed leaders who are accountable for real security outcomes. What we’ve learned is simple: most organizations don’t fail because they lack tools or data. They fail because they lack prioritization, context, and judgment under pressure.
They overreact to the wrong signals.
They underreact to the right ones.
That gap is where The Monday Brief lives.
We’re launching this weekly executive cybersecurity briefing to close the gap between the volume of information produced every week and the clarity decision-makers actually need to act.
Think Red, Act Blue
Offensive work exposes uncomfortable truths. Attackers don’t need perfect exploits or sophisticated tooling. They look for asymmetry. They exploit incentives, shortcuts, weak assumptions, and paths of least resistance. Most attacks succeed not because defenders are careless, but because systems were never designed with abuse paths in mind.
Defensive leadership exposes a different failure mode. Many organizations operate on legacy architectures, operating models, and assumptions that quietly no longer hold. Controls look good on slides and in marketing material, but break under real operational pressure. Detection exists, but feedback loops are slow, fragmented, or ignored. The solution isn’t more auditing, more compliance, or more controls. It’s deciding which trade-offs truly matter and which risks must be consciously owned.
Think Red, Act Blue is about navigating that tension.
Doug’s perspective is shaped by years of offensive research and vulnerability discovery, understanding how systems are actually abused, where incentives break, and why simple techniques consistently outperform complex ones. Ismael’s perspective is shaped by building and operating defenses at scale, translating those realities into architectures, operating models, and decisions leaders can explain, defend, and sustain.
We write The Monday Brief together because the most valuable insights don’t live purely in red (offensive) thinking or blue (defensive) execution. They live at the intersection of adversary reality and operational responsibility. That’s where better decisions are made.
Why us
Between us, we bring more than 40 years of combined experience across offensive research, defensive architecture, threat intelligence, detection engineering, and executive leadership.
Ismael has spent more than two decades helping governments, Fortune 500 companies, and critical infrastructure providers defend against advanced adversaries. He has held leadership roles at Foundstone, Intel, McAfee, Trellix, BlackBerry Cylance, and more recently Arctic Wolf, and teaches defenders globally as a SANS Senior Instructor and author of SANS SEC530: Defensible Security Architecture and Engineering: Implementing Zero Trust for the Hybrid Enterprise. Along the way, he has built SOCs and digital forensics, incident response, threat intelligence, and detection engineering capabilities at scale, and advised governments and enterprises on strategies to outpace adversaries.
Doug’s career has focused on understanding how attackers really operate and turning that insight into practical defense. From the U.S. Department of Defense to McAfee, Trellix, SonicWall, and now Rapid7, he has led vulnerability research and exploit development teams responsible for tracking and translating thousands of vulnerabilities into actionable intelligence. He is also a SANS instructor for SEC660: Advanced Penetration Testing, Exploit Writing, and Ethical Hacking, and known for making highly technical concepts usable by real defenders.
Different paths. Same goal: helping leaders make better decisions.
The community we want to build
This is not a space for hot takes or real-time reaction. It’s a space for leaders who want to think clearly under pressure, who are willing to question assumptions, and who understand that good security decisions often look boring before they look obvious.
If you brief executives or boards, if you’re responsible for prioritization instead of alerts, and if you’re tired of chasing every headline, you’re in the right place.
What to expect from The Monday Brief
We publish once a week, every Monday.
Each issue is built around signals: relevant developments that appear across multiple sources and form a meaningful pattern. We intentionally look for signals that are undercovered, misunderstood, or dismissed, not just the loudest stories of the week.
Every issue includes:
A short intro explaining why this week matters
Analysis of three (sometimes more) signals that deserve attention
Clear guidance on what to act on, what to watch, and what to ignore
A meme of the week that reflects the signal landscape (because clarity doesn’t have to be dry!)
If a signal doesn’t help you make a better decision, it doesn’t belong here.
The core newsletter is free and delivered weekly. Over time, additional content will provide deeper analysis, decision frameworks, and additional board-ready perspectives from other top industry leaders, but the Monday Brief itself will remain focused, readable, and practical.
Our commitment to you
This weekly brief is a commitment to clarity. We will always be explicit about what matters, why it matters, and what trade-offs are involved.
The first issue of The Monday Brief will land in your inbox on Monday, January 12th. If this way of thinking about cybersecurity, AI, and risk resonates with you, subscribe now and join us each week as we turn signals into decisions.
See you Monday!