The newsletter where an InfoSec Manager shares what actually happens behind the scenes

I'm Andries, a working InfoSec Manager. This newsletter is how I learn -- by writing about what I encounter on the job and sharing it with others in similar roles. No technical deep dives. No vendor pitches. Just real stories, honest mistakes, and practical lessons from someone sitting in the same chair as you.Published when there's something worth saying.

Risk Management

Mar 3, 2026

•

5 min read

The Model That Fixes the Blame Game

Understanding the 3 Lines of Defence model, and how InfoSec fits into it

Andries Bredenkamp

PII

Mar 1, 2026

•

4 min read

My "Credit Cards in The Trash" Story

The biggest data breach I found didn’t involve hacking. It involved a filing cabinet.

Andries Bredenkamp

ISO 27001

Feb 28, 2026

•

4 min read

My Vendor Lied To Me

How I knew their ISO 27001 certificate was fake

Andries Bredenkamp

The newsletter where an InfoSec Manager shares what actually happens behind the scenes

The Model That Fixes the Blame Game

My "Credit Cards in The Trash" Story

My Vendor Lied To Me

The InfoSec Nerd