Andrew Stevens

preloader

Andrew Stevens

Andrew Stevens is an executive leader, investor, and technology strategist focused on the intersection of cloud, data, AI, and security. He has helped scale technology ventures from early traction to acquisition, working across fintech, media, gaming, and AI-driven businesses in both European and U.S. markets.

Known for bringing clarity to complex technology shifts, Andrew helps founders, operators, and executive teams turn emerging capabilities into practical advantage. His work focuses on AI strategy, resilient infrastructure, governance, and the operating models required to scale modern technology businesses with confidence.

Written by Andrew Stevens

blog-post

OWASP Just Drew a New Map, Read It Before Your Auditors Do

The Foundation's new strategic plan is not a community update. It commits OWASP to setting the technical floor for AI …

May 07, 2026 - 9 Min read

blog-post

The Mythos Ledger, Part 5: The Resilient Cloud Manifesto

The series finale. Across four posts, we identified three machine-speed problems - discovery, intelligence, identity - …

May 06, 2026 - 11 Min read

blog-post

The Mythos Ledger, Part 4: Identity in the Autonomous Enterprise and Why the Agent Is the New Perimeter

Non-human identities now outnumber humans by 40:1, 100:1, and in hyper-automated environments by 500:1. When AI agents …

May 05, 2026 - 13 Min read

blog-post

The Mythos Ledger, Part 3: The Glasswing Strategy (From Defensive Coalitions to Cloud Immunity)

Anthropic's $100M Project Glasswing is the first attempt to flip the economics of AI-driven vulnerability research …

May 04, 2026 - 10 Min read

blog-post

The Mythos Ledger, Part 2: The Verification Crisis

AI-driven discovery has lowered the cost of finding bugs by an order of magnitude. The cost of proving which ones are …

Apr 28, 2026 - 19 Min read

blog-post

The Mythos Ledger, Part 1: The Firefox Watershed and the New Baseline of Vulnerability

Claude Mythos surfaced 271 vulnerabilities in a single Firefox evaluation pass. The number isn't the story - the …

Apr 27, 2026 - 7 Min read

blog-post

The Autonomous Horizon, Part 6: The Architecture of Trust

The four pillars of the autonomous enterprise describe the operating model. GATE names the framework that makes it …

Apr 24, 2026 - 10 Min read

blog-post

GATE: The Missing Infrastructure Layer for Agentic AI

Prompt guardrails are not governance. When AI agents can take real-world actions at machine speed, you need …

Apr 23, 2026 - 6 Min read

blog-post

The Autonomous Horizon, Part 5: Adaptive Workflows and the Shift from Fixed Process to Responsive Execution

Intelligence, data, and control only create advantage when the process layer can keep up. Adaptive workflows are where …

Apr 21, 2026 - 11 Min read

blog-post

The Autonomous Horizon, Part 4: Governed Execution and Control at Machine Speed

As enterprises move to machine-speed execution, governance has to move with them. That means embedding control into the …

Apr 19, 2026 - 12 Min read

blog-post

The Autonomous Horizon, Part 3: Why Autonomy Runs on a Clean Data Core

Autonomy depends on data the enterprise can act on. The clean data core is what turns trusted context into operational …

Apr 17, 2026 - 10 Min read

blog-post

The Autonomous Horizon, Part 2: Agentic AI and the Shift from Automation to Execution

Agentic AI marks the shift from assistive tools to execution systems, but only when supported by trusted data, …

Apr 16, 2026 - 10 Min read

blog-post

The Autonomous Horizon, Part 1: Beyond Digital Transformation

Digital transformation made the enterprise modern. The next step is building one that can sense, decide, and act with …

Apr 15, 2026 - 8 Min read

blog-post

Trustworthy AI Agents: The Trustworthy AI Blueprint

Bringing together all 16 primitives into a single, coherent architecture. The capstone: Operational Risk Modeling.

Dec 01, 2025 - 5 Min read

blog-post

Trustworthy AI Agents: Human-in-the-Loop Governance

The ultimate safety primitive: defining when humans intervene, approve, constrain, or override autonomous decisions.

Nov 30, 2025 - 8 Min read

blog-post

Trustworthy AI Agents: Agent-Native Observability

Traditional telemetry cannot explain LLM reasoning. Agent systems need semantic-level visibility: reasoning graphs, …

Nov 28, 2025 - 5 Min read

blog-post

Trustworthy AI Agents: Secure Memory Governance

Agents increasingly rely on long-term memory, embeddings, caches, and shared state. We need strong security and …

Nov 27, 2025 - 6 Min read

blog-post

Trustworthy AI Agents: Distributed Agent Orchestration

Agents need a control plane. Routing, scheduling, failover, cost-aware prioritization, and cross-agent coordination must …

Nov 26, 2025 - 12 Min read

blog-post

Trustworthy AI Agents: Resource Governance

Infinite task loops and runaway agents are already common failure modes. We need quota systems, throttling, and …

Nov 25, 2025 - 10 Min read

blog-post

Trustworthy AI Agents: Agent Lifecycle Management

Like microservices, agents need versioning, deployment pipelines, and safe deprecation paths.

Nov 24, 2025 - 8 Min read

blog-post

Trustworthy AI Agents: Secure Multi-Agent Protocols

Agents need a standardized, authenticated, encrypted, and versioned protocol for inter-agent communication. Right now it …

Nov 23, 2025 - 6 Min read

blog-post

Trustworthy AI Agents: Formal Verification of Constraints

Agents that act autonomously must obey provable invariants. Formal verification provides the missing guardrails for …

Nov 21, 2025 - 7 Min read

blog-post

Trustworthy AI Agents: Deterministic Replay

Debugging agents is nearly impossible today. We need the ability to record and replay runs deterministically to diagnose …

Nov 20, 2025 - 26 Min read

blog-post

Trustworthy AI Agents: Adversarial Robustness

Models need to withstand data poisoning, prompt injection, and inversion attacks. A cleverly crafted input can collapse …

Nov 19, 2025 - 8 Min read

blog-post

Trustworthy AI Agents: Kill Switches and Circuit Breakers

Why autonomous agents need hard limits, circuit breakers, and emergency stop mechanisms to prevent runaway execution and …

Nov 18, 2025 - 10 Min read

blog-post

Trustworthy AI Agents: Verifiable Audit Logs

How to make every agent action tamper proof and cryptographically verifiable for compliance and forensic analysis.

Nov 17, 2025 - 9 Min read

blog-post

Trustworthy AI Agents: Policy-as-Code Enforcement

Guardrails must be enforced at runtime, not left as developer best practices. Just like infrastructure-as-code, …

Nov 15, 2025 - 6 Min read

blog-post

Trustworthy AI Agents: Agent Identity & Attestation

Go beyond API keys. Learn to engineer trustworthy AI agents with verifiable identity and attestation using the SPIFFE …

Oct 07, 2025 - 8 Min read

blog-post

Trustworthy AI Agents: Prompt Injection Protection

Why prompt injection is a critical vulnerability for AI agents. This guide covers detection techniques, architectural …

Oct 01, 2025 - 5 Min read

blog-post

Trustworthy AI Agents: End-to-End Encryption

The next instalment in our series on trustworthy AI agents—an overview of 12 missing engineering primitives (encryption, …

Sep 19, 2025 - 8 Min read

blog-post

The Missing Primitives for Trustworthy AI Agents

An overview of missing engineering primitives (encryption, identity, governance, orchestration, observability) required …

Sep 08, 2025 - 4 Min read

blog-post

Your Most Powerful User Is Your Growing Security Blind Spot

AI agents are a powerful new tool, but they also represent a growing security blind spot. Traditional security models …

Aug 20, 2025 - 4 Min read

blog-post

Streaming CrowdStrike Falcon Events into GCS for Google Chronicle

A technical guide to creating a cost-effective, serverless pipeline for streaming CrowdStrike Falcon events directly …

Aug 05, 2025 - 6 Min read

blog-post

Hot or Hype Ep 6: AI, Marketing, and the Evolution of Customer Experience with David Ovens

In our latest podcast, we speak with Andreea, Head of Data at Xapo Bank, about how AI is reshaping finance. Discover how …

Jun 26, 2025 - 3 Min read

blog-post

Model Context Protocol on Google Cloud

The Model Context Protocol (MCP) is an emerging AI standard that enables secure, real-time context and tool integration …

May 12, 2025 - 16 Min read

blog-post

A Simple Approach to AI Agents and Content Access with RBAC on Vertex AI

Learn how to secure AI agents and protect sensitive data with Role-Based Access Control (RBAC) on Google Cloud's Vertex …

Apr 03, 2025 - 4 Min read

blog-post

Hot or Hype: Episode 3 - Future of AI in Baseball

How is AI transforming baseball? In this episode of Hot or Hype, we explore how the San Francisco Giants are using AI …

Mar 05, 2025 - 4 Min read

blog-post

Hot or Hype: Episode 2 - AI Agents

Dive into our second Hot Or Hype podcast episode as we explore the buzz around AI Agents. Are they just super-powered …

Feb 12, 2025 - 2 Min read

blog-post

Hot or Hype Deep Dive: Episode 1 AI-Driven Predictive Analytics

Join our deep dive into AI-driven predictive analytics—explore real-world applications, potential pitfalls, and expert …

Feb 07, 2025 - 2 Min read

blog-post

Hot or Hype: Episode 1 - AI-Driven Predictive Analytics

Is AI-driven predictive analytics the future of business intelligence or just another overhyped trend? In this episode …

Feb 04, 2025 - 2 Min read

blog-post

GCP Cost Reviews: A Framework To Work With Your FinOps Tooling

How I optimize GCP costs with a FinOps-driven framework. Track actionable strategies, tools, and templates to reduce …

Jan 27, 2025 - 5 Min read

blog-post

Ray and Vertex AI, Let's Get Hands On

Discover how combining Ray and Vertex AI creates a complete solution for scalable AI. Our team takes a look at training, …

Jan 21, 2025 - 11 Min read

blog-post

Best Practices for Scaling AI Models in the Enterprise

Thoughts on best practices for scaling AI models with cloud computing, including MLOps, cost optimization, and …

Jan 20, 2025 - 5 Min read

blog-post

My reflections on the 2024 DORA Report

My key insights from the 2024 DORA Report, focusing on the evolution of AI integration, platform engineering, and …

Dec 11, 2024 - 5 Min read

blog-post

Unlocking AI Potential by Accelerating Adoption with Cloud Services

Our CTO writes about how cloud platforms like AWS, GCP, and Azure accelerate AI adoption with scalable infrastructure, …

Dec 10, 2024 - 7 Min read

blog-post

Modern Data Architectures, An Opinion on Best Practices for Scalability and Security

What are the core principles and best practices for building a modern data architecture? Our opinion on scalable design …

Dec 05, 2024 - 5 Min read

blog-post

Transforming Data into Insights: Building an AI-First Cloud Strategy

How to build an AI-first cloud strategy, integrating scalable architectures, data governance, and machine learning for …

Dec 02, 2024 - 6 Min read

blog-post

AI Compliance: Challenges, Opportunities, and Solutions for the EU AI Act

How is the EU AI Act is shaping global AI development? Here are some compliance strategies and industry-specific …

Nov 29, 2024 - 5 Min read

blog-post

EU AI Act: Implications for Data and Cloud in Banking, Ecommerce, and Gaming

What are the implications of the EU AI Act for global businesses in banking, ecommerce, and gaming. How can data …

Nov 28, 2024 - 5 Min read

blog-post

Data Driven Advertising Optimization: Integrating AI

How Sakura's advanced analytics and machine learning optimizes advertising campaigns. We deliver robust data pipelines, …

Nov 26, 2024 - 4 Min read

blog-post

Navigating GDPR, CCPA, and APP Compliance: Technical Insights for Ethical Data Tagging and Collection

This guide explores key considerations for marketers to ensure compliance while maintaining ethical, effective …

Nov 24, 2024 - 4 Min read

blog-post

Ethical Considerations in AI Development for Data Scientists and Data Engineers

The Sakura team looks at ethical AI issues for data scientists and engineers, focusing on transparency, accountability, …

Mar 09, 2024 - 8 Min read

blog-post

Handling Missing Data in Financial Models with Multiple Imputation

Multiple Imputation strategies and key considerations tailored for data engineers and data scientists in the financial …

Mar 04, 2024 - 5 Min read

blog-post

Demystifying Data Mesh

Understand Data Mesh principles, tools, and best practices for implementing a decentralized data architecture. Learn …

Feb 26, 2024 - 10 Min read

blog-post

A Modern Data Strategy: Medallion Architectures on DigitalOcean

A modern, scalable, and efficient data analytics pipeline that transforms raw data into actionable insights, utilizing …

Feb 20, 2024 - 5 Min read

blog-post

Uncovering Hidden Biases in AI Datasets

Strategies for detecting and mitigating bias to ensure fairness and equity in artificial intelligence.

Feb 18, 2024 - 4 Min read

blog-post

Tools for Financial Data Scientists

TileDB, PrestoDB, TensorFlow, Dask, Zarr, and Apache Arrow can transform data management and analytics in the financial …

Feb 15, 2024 - 4 Min read

blog-post

Azure Data Factory, Azure Databricks, and Azure SQL Server: A Focus on Change Data Capture and Medallion Architecture

Azure services like Data Factory, Databricks, and SQL Server offer significant benefits when aligned with the Medallion …

Jul 05, 2023 - 3 Min read

blog-post

Data Governance in the Cloud with Terraform

Terraform, a powerful Infrastructure as Code tool, can be leveraged to implement effective data governance in your cloud …

Jun 15, 2023 - 3 Min read

blog-post

Privacy by Design: A Guide for Data Engineering Teams

Privacy by Design and its importance in data engineering.

Jun 08, 2023 - 4 Min read

blog-post

Zero Trust in Data Lakehouses

An overview of the principles of zero trust security can be applied to a medallion architecture within a data lakehouse

Jun 05, 2023 - 4 Min read

blog-post

Understanding & Addressing the Critical Concerns of API Security

Delve into the ten most critical concerns for API security.

May 17, 2023 - 6 Min read

blog-post

Navigating Your Data Strategy: Data Warehouse, Data Lake, or Data Lakehouse

Starting with the right pattern is important and you may be considering approaches such as a data warehouse, a data …

May 15, 2023 - 3 Min read

blog-post

15 Cloud Security Challenges for 2024

15 concerns in cloud security

May 12, 2023 - 3 Min read

blog-post

An Approach to Generative AI

Implementing Zero Trust for containers can help organizations secure their dynamic containerized environments and …

May 03, 2023 - 5 Min read

blog-post

Embracing Zero Trust for Container Security

Implementing Zero Trust for containers can help organizations secure their dynamic containerized environments and …

May 02, 2023 - 4 Min read

blog-post

DevSecOps Challenges and Solutions

DevSecOps, an approach that integrates security practices into the continuous delivery pipeline, promises to improve the …

May 01, 2023 - 3 Min read

blog-post

The Medallion Architecture in a Data Lakehouse

Medallion architecture is a design pattern for data lakehouses that helps organizations effectively manage and analyze …

Apr 27, 2023 - 4 Min read

blog-post

Data Lakehouse: Some Pros and Cons

The data lakehouse concept has emerged as a new approach to address the limitations of traditional data lakes and data …

Apr 26, 2023 - 4 Min read

blog-post

12 Critical Concerns of Data Governance

In the age of data-driven decision making, effective data governance has become increasingly important for businesses of …

Apr 13, 2023 - 4 Min read

blog-post

Data Governance Monitoring & Auditing: Tips for Compliance & Trustworthiness of Your Data Assets

Data literacy is the ability to read, analyze, interpret, and communicate data effectively.

Apr 12, 2023 - 3 Min read

blog-post

Boosting Data Literacy to Empower Data-Driven Decision-Making

Data literacy is the ability to read, analyze, interpret, and communicate data effectively.

Apr 11, 2023 - 3 Min read

blog-post

A Getting Started Guide for Data Architecture

Data architecture is the backbone of an organization's data management strategy, providing the structure and guidelines …

Apr 10, 2023 - 4 Min read

blog-post

Data Ethics and Responsible AI: Building Trust and Ensuring Fairness in Data-Driven Solutions

As data-driven solutions and artificial intelligence (AI) become increasingly prevalent, organizations must prioritize …

Apr 06, 2023 - 3 Min read

blog-post

Data Access and Sharing Best Practices: Balancing Collaboration and Security

Effective data access and sharing practices are crucial for organizations to facilitate collaboration, drive innovation, …

Apr 05, 2023 - 3 Min read

blog-post

Data Lifecycle Management for Data Governance and Optimization

Data Lifecycle Management (DLM) is a critical aspect of data governance, involving the systematic management of data …

Apr 03, 2023 - 5 Min read

blog-post

Data Integration Strategies: Unifying Your Organization's Data for Better Decision-Making

Data integration is a critical process for organizations looking to combine data from multiple sources, systems, and …

Mar 31, 2023 - 6 Min read

blog-post

Data Stewardship: The Cornerstone of Effective Data Governance

Data stewardship plays a crucial role in any successful data governance program

Mar 30, 2023 - 3 Min read

blog-post

Data Security Tips

Safeguarding Your Organization's Most Valuable Asset.

Mar 28, 2023 - 3 Min read

blog-post

Data Quality Best Practices

Data quality is a critical component of any data governance program.

Mar 27, 2023 - 3 Min read

blog-post

Why IaC with Terraform is best practice

Why an Infrastructure as Code approach with HashiCorp Terraform is best practice.

Feb 20, 2023 - 3 Min read

blog-post

How to Determine Asset Risk for Cyberattacks

Questions to ask yourself to determine how assets are at risk from a cyberattack.

Mar 25, 2021 - 2 Min read

Intelligence, Engineered.

Accelerate your operations with proven expertise built to scale and adapt.
Enable, automate, and govern the intelligent systems that keep your business moving.

Unlock Your Potential