Publications

OpenAI Internal Model Red Teaming
Red Team Network contributions to Operator, GPT-4o, o3-mini, and Deep Research system cards.

eBPF Foundation Security Threat Model
A comprehensive threat model for eBPF-based security solutions.

FINOS AI Governance Framework
AI governance framework for financial services.

FINOS AI Security Reference Architecture
AI security reference architecture for financial services.

NIST SP 800-233 Service Mesh Proxy Models
Security guide to service mesh proxy models for cloud-native applications.

CIS Benchmarks for Google Kubernetes Engine
Center for Internet Security hardening guide for GKE.

Hacking Kubernetes (O'Reilly)
The definitive guide to Kubernetes offensive and defensive security.

Financial Services User Group Kubernetes Threat Model
Financial services-specific threat model for Kubernetes.

CNCF Envoy Gateway Threat Model
A comprehensive threat model for the Envoy Gateway.

Flux D1 Reference GitOps Architecture
A hardened reference architecture for GitOps with Flux CD.

Kubernetes for Security Operations Centres
Community collaboration with JP Morgan CyberOps.

CNCF ArgoCD End User Hardening Guide
A guide to hardening ArgoCD for end users.

CNCF Flatcar Threat Model
A project graduation threat model with the TAG Security community.