Welcome to

OneUpSec

Tech, security, and projects — by Mario Lunato.

Read my blog About me

Recent Posts

Apr 8, 2026 · 7 min read

What the Field CISO Role Looks Like in Practice

Using Phil Venables' Field CISO framework as a lens to describe what the role actually looks like from inside it at Knox Systems, where the product is a FedRAMP shared boundary.

#Field CISO#FedRAMP#GRC-engineering#Cybersecurity#Leadership
Apr 1, 2026 · 8 min read

Even the Safety-First AI Lab Ships a Leaky Pipeline

Anthropic just handed the entire industry a ~500,000-line lesson in why supply chain hygiene is not optional, and why being safety-obsessed at the model layer means nothing if your build process is a mess.

#Supply-Chain#DevSecOps#AI Security#AI#Cybersecurity
Mar 27, 2026 · 12 min read

NTC-0009: FedRAMP's Machine-Readable Future Just Got Real (and More Reasonable)

A breakdown of FedRAMP NTC-0009, the outcome of RFC-0024 on machine-readable authorization packages for Rev5, including what changed, the new timelines, and what it means for CSPs, 3PAOs, and agencies.

#FedRAMP#FedRAMP20x#OSCAL#Compliance-as-Code#GRC-engineering#Compliance