Suneth Mendis

A personal blog by a technologist and a leader contextualising thoughts…

Category: Cybersecurity

  • The CISO Evolution: From Firewall Manager to Culture Architect

    There’s a phrase making the rounds in security leadership circles right now that deserves more attention than it gets: “Cyber is 20% technology and 80% behaviour.” It sounds almost heretical from a profession built on firewalls, SIEMs, and zero-trust architectures. But the most respected CISOs in 2026 aren’t saying it to downplay technical rigour — they’re…

  • Reframing Cyber awareness as Digital Safety

    Phishing remains the most reliable entry point for attackers. Whether the lure is a fake invoice, a credential harvest, a business email compromise attempt, or a well-crafted impersonation, the common factor is human behaviour. A single click can bypass millions of dollars’ worth of technical controls. That is why awareness matters. Not as a compliance…

  • Can AI Replace a SOC?

    When Anthropic announced Claude for Security, I had a few messages almost immediately: “So… is this the end of the SOC?” Short answer? No. Longer answer? Something far more interesting is happening. And if you’re leading cyber, digital, or risk — this matters. We’re Asking the Wrong Question “Can AI replace a SOC?” is catchy, but it misses…