Hello. Welcome to my blog. I’m Keith Crawford. I am Cybersecurity Consultant and Advisory CISO. My areas of focus are Risk Management, Policy, Frameworks (NIST CSF, FFIEC), & Assurance (SOC2, HIPAA, CMMC).

What is //security

I share Cybersecurity news, insights, and analysis geared for decision makers and regular people.

The // name comes from my practice of sharing quick analysis on Twitter after the text separator of //.


I want to see people more prepared to operate in a digital world. I don’t like to see people taken advantage of. I want to see organizations mature their operations and be more effective through security and compliance. Also you should build resilience before you need it.

All opinions posted here are mine alone. Unless you share them, then they are ours. 😀


I’m working on an email newsletter for this blog but haven’t gotten around to it.

For now you can subscribe on Twitter, via RSS, or my Telegram Channel.