About

Abdul B. Sesay

Cybersecurity professional. Writing about the human side of digital security.

Background

Abdul B. Sesay is a Chief Information Security Officer with over a decade of experience in IT and cybersecurity. His work goes beyond conventional security operations — he has built a practice around understanding how human behavior shapes risk, looking at the psychological dimensions of threats that technical controls alone won't catch.

He's particularly focused on what he calls the "human attack surface": the ways cognitive biases, social engineering, and insider dynamics create vulnerabilities that sit outside the reach of most security architectures. This interest has pushed him toward cyber psychology as a serious analytical discipline, not just a supplementary talking point.

His research work takes a geopolitical angle. He examines how state and non-state actors use cyberspace for espionage, influence operations, and economic disruption — and tries to connect the technical details of those operations to their broader political consequences. It's applied work, not theoretical.

As a CISO, he operates at the intersection of security strategy and business reality, translating risk into terms that resonate with organizational leadership while building security cultures that don't rely entirely on compliance checklists. His approach leans heavily on behavioral science and continuous education as practical security tools.

He represents a shift happening across serious security leadership — away from the idea that better tools solve the problem, and toward the recognition that people, their decisions, and their environments are where most of the hard security work actually happens.

Areas of Focus

Cyberpsychology: The intersection of human behaviour and digital security — understanding why people make the decisions they do online.
Threat Intelligence: Analysing adversary tactics, techniques, and procedures to help organisations stay ahead of emerging threats.
Security Architecture: Designing secure-by-default systems that minimise attack surface and enforce least privilege at every layer.
Security Awareness: Building security cultures through education, simulation, and behaviour-focused training programmes.

Writing Philosophy

Security writing too often falls into one of two traps: it is either so technical that it excludes non-engineers, or so simplified that it loses the nuance that makes it actionable.

My goal is to write at the level of an intelligent, curious professional — someone who does not need jargon explained, but who also does not need a computer science degree to follow the argument.

Every article on this blog is written with accuracy, intellectual honesty, and practical relevance as the primary criteria. If it does not help you think more clearly about security, it does not belong here.

Security Disclosure

If you discover a security vulnerability in this site, please report it responsibly. I take security seriously and will respond promptly.

View security policy →