https://kieranupadrasta.com/principle-cards/principle_001.html 2026-05-19 monthly 0.8 https://kieranupadrasta.com/principle-cards/principle_001.png Principle 001: Crisis Decision Hierarchy — Executive Governance Doctrine Card by Professor Kieran Upadrasta, CISSP CISM CRISC, Schiphol University Organisations do not lose systems first. They lose decision authority — then everything else follows. Principle 001/100 from 100 Cyber Doctrine Principles by Professor Kieran Upadrasta, CISSP CISM CRISC, Schiphol University. Executive Governance. https://kieranupadrasta.com/principle-cards/principle_002.html 2026-05-19 monthly 0.8 https://kieranupadrasta.com/principle-cards/principle_002.png Principle 002: Board-Survivable Cyber Architecture™ — Executive Governance Doctrine Card by Professor Kieran Upadrasta, CISSP CISM CRISC, Schiphol University Boards do not buy cyber technology. They buy the absence of unrecoverable downside. Principle 002/100 from 100 Cyber Doctrine Principles by Professor Kieran Upadrasta, CISSP CISM CRISC, Schiphol University. Executive Governance. https://kieranupadrasta.com/principle-cards/principle_003.html 2026-05-19 monthly 0.8 https://kieranupadrasta.com/principle-cards/principle_003.png Principle 003: Evidence Chain Model™ — Evidence & Regulation Doctrine Card by Professor Kieran Upadrasta, CISSP CISM CRISC, Schiphol University If the evidence chain breaks before the regulator opens the file, the control was never a control. Principle 003/100 from 100 Cyber Doctrine Principles by Professor Kieran Upadrasta, CISSP CISM CRISC, Schiphol University. Evidence & Regulation. https://kieranupadrasta.com/principle-cards/principle_004.html 2026-05-19 monthly 0.8 https://kieranupadrasta.com/principle-cards/principle_004.png Principle 004: Decision Rights Architecture™ — Executive Governance Doctrine Card by Professor Kieran Upadrasta, CISSP CISM CRISC, Schiphol University Authority that cannot be exercised under pressure is decorative. Document it as theatre or redesign it as power. Principle 004/100 from 100 Cyber Doctrine Principles by Professor Kieran Upadrasta, CISSP CISM CRISC, Schiphol University. Executive Governance. https://kieranupadrasta.com/principle-cards/principle_005.html 2026-05-19 monthly 0.8 https://kieranupadrasta.com/principle-cards/principle_005.png Principle 005: Recoverability Mandate™ — Resilience & Recovery Doctrine Card by Professor Kieran Upadrasta, CISSP CISM CRISC, Schiphol University Recovery is not a phase. It is the discipline that proves whether the programme is real. Principle 005/100 from 100 Cyber Doctrine Principles by Professor Kieran Upadrasta, CISSP CISM CRISC, Schiphol University. Resilience & Recovery. https://kieranupadrasta.com/principle-cards/principle_006.html 2026-05-19 monthly 0.8 https://kieranupadrasta.com/principle-cards/principle_006.png Principle 006: Contract Control Matrix™ — Contracts & Suppliers Doctrine Card by Professor Kieran Upadrasta, CISSP CISM CRISC, Schiphol University Every clause your counterparty would not sign on incident day must be removed or rewritten today. Principle 006/100 from 100 Cyber Doctrine Principles by Professor Kieran Upadrasta, CISSP CISM CRISC, Schiphol University. Contracts & Suppliers. https://kieranupadrasta.com/principle-cards/principle_007.html 2026-05-19 monthly 0.8 https://kieranupadrasta.com/principle-cards/principle_007.png Principle 007: AI Accountability Stack™ — AI Governance Doctrine Card by Professor Kieran Upadrasta, CISSP CISM CRISC, Schiphol University Autonomy without accountability is liability dressed as innovation. Govern both with the same instrument. Principle 007/100 from 100 Cyber Doctrine Principles by Professor Kieran Upadrasta, CISSP CISM CRISC, Schiphol University. AI Governance. https://kieranupadrasta.com/principle-cards/principle_008.html 2026-05-19 monthly 0.8 https://kieranupadrasta.com/principle-cards/principle_008.png Principle 008: Operational Defensibility — Evidence & Regulation Doctrine Card by Professor Kieran Upadrasta, CISSP CISM CRISC, Schiphol University Time-to-defensible is the only metric your supervisor, board, and insurer will ever agree on. Principle 008/100 from 100 Cyber Doctrine Principles by Professor Kieran Upadrasta, CISSP CISM CRISC, Schiphol University. Evidence & Regulation. https://kieranupadrasta.com/principle-cards/principle_009.html 2026-05-19 monthly 0.8 https://kieranupadrasta.com/principle-cards/principle_009.png Principle 009: Doctrine Durability — Doctrine & Talent Doctrine Card by Professor Kieran Upadrasta, CISSP CISM CRISC, Schiphol University Control posture survives leadership turnover only when doctrine outlives the doctrine's author. Principle 009/100 from 100 Cyber Doctrine Principles by Professor Kieran Upadrasta, CISSP CISM CRISC, Schiphol University. Doctrine & Talent. https://kieranupadrasta.com/principle-cards/principle_010.html 2026-05-19 monthly 0.8 https://kieranupadrasta.com/principle-cards/principle_010.png Principle 010: Asymmetric Disclosure Doctrine™ — Disclosure & Crisis Doctrine Card by Professor Kieran Upadrasta, CISSP CISM CRISC, Schiphol University Counterparties forgive incidents. They do not forgive the second disclosure that contradicts the first. Principle 010/100 from 100 Cyber Doctrine Principles by Professor Kieran Upadrasta, CISSP CISM CRISC, Schiphol University. Disclosure & Crisis. https://kieranupadrasta.com/principle-cards/principle_011.html 2026-05-19 monthly 0.8 https://kieranupadrasta.com/principle-cards/principle_011.png Principle 011: Third-Party Liability Inversion™ — Suppliers & Liability Doctrine Card by Professor Kieran Upadrasta, CISSP CISM CRISC, Schiphol University Your supplier's weakest control becomes your strongest liability when the regulator names you together. Principle 011/100 from 100 Cyber Doctrine Principles by Professor Kieran Upadrasta, CISSP CISM CRISC, Schiphol University. Suppliers & Liability. https://kieranupadrasta.com/principle-cards/principle_012.html 2026-05-19 monthly 0.8 https://kieranupadrasta.com/principle-cards/principle_012.png Principle 012: Cyber Insurance Renegotiation Principle™ — Insurance & Claims Doctrine Card by Professor Kieran Upadrasta, CISSP CISM CRISC, Schiphol University The pre-incident premium is tuition. The renewal is the exam your control posture sits in writing. Principle 012/100 from 100 Cyber Doctrine Principles by Professor Kieran Upadrasta, CISSP CISM CRISC, Schiphol University. Insurance & Claims. https://kieranupadrasta.com/principle-cards/principle_013.html 2026-05-19 monthly 0.8 https://kieranupadrasta.com/principle-cards/principle_013.png Principle 013: Identity-as-Perimeter Doctrine™ — Identity & Access Doctrine Card by Professor Kieran Upadrasta, CISSP CISM CRISC, Schiphol University There is no boundary left to harden. Identity is the control plane and every assertion is an audit contract. Principle 013/100 from 100 Cyber Doctrine Principles by Professor Kieran Upadrasta, CISSP CISM CRISC, Schiphol University. Identity & Access. https://kieranupadrasta.com/principle-cards/principle_014.html 2026-05-19 monthly 0.8 https://kieranupadrasta.com/principle-cards/principle_014.png Principle 014: Crypto-Agility Mandate™ — Quantum & Crypto Doctrine Card by Professor Kieran Upadrasta, CISSP CISM CRISC, Schiphol University Quantum-resilient cryptography is not research. It is next decade's audit finding written today. Principle 014/100 from 100 Cyber Doctrine Principles by Professor Kieran Upadrasta, CISSP CISM CRISC, Schiphol University. Quantum & Crypto. https://kieranupadrasta.com/principle-cards/principle_015.html 2026-05-19 monthly 0.8 https://kieranupadrasta.com/principle-cards/principle_015.png Principle 015: Operational Resilience Threshold™ — Resilience & Continuity Doctrine Card by Professor Kieran Upadrasta, CISSP CISM CRISC, Schiphol University The hour you cannot operate degraded is the hour your continuity plan becomes evidence against you. Principle 015/100 from 100 Cyber Doctrine Principles by Professor Kieran Upadrasta, CISSP CISM CRISC, Schiphol University. Resilience & Continuity. https://kieranupadrasta.com/principle-cards/principle_016.html 2026-05-19 monthly 0.8 https://kieranupadrasta.com/principle-cards/principle_016.png Principle 016: Model Risk Governance Doctrine™ — AI Governance Doctrine Card by Professor Kieran Upadrasta, CISSP CISM CRISC, Schiphol University Every AI decision touching a customer leaves a paper trail. Write it before the regulator does. Principle 016/100 from 100 Cyber Doctrine Principles by Professor Kieran Upadrasta, CISSP CISM CRISC, Schiphol University. AI Governance. https://kieranupadrasta.com/principle-cards/principle_017.html 2026-05-19 monthly 0.8 https://kieranupadrasta.com/principle-cards/principle_017.png Principle 017: Sovereign Risk Geometry™ — Data Sovereignty Doctrine Card by Professor Kieran Upadrasta, CISSP CISM CRISC, Schiphol University Data residency is not policy. It is the geometry of who can compel disclosure and from where. Principle 017/100 from 100 Cyber Doctrine Principles by Professor Kieran Upadrasta, CISSP CISM CRISC, Schiphol University. Data Sovereignty. https://kieranupadrasta.com/principle-cards/principle_018.html 2026-05-19 monthly 0.8 https://kieranupadrasta.com/principle-cards/principle_018.png Principle 018: Zero Trust Engineering Admission™ — Zero Trust Doctrine Card by Professor Kieran Upadrasta, CISSP CISM CRISC, Schiphol University Zero Trust is not a product line. It is the admission that inherited trust was already wrong. Principle 018/100 from 100 Cyber Doctrine Principles by Professor Kieran Upadrasta, CISSP CISM CRISC, Schiphol University. Zero Trust. https://kieranupadrasta.com/principle-cards/principle_019.html 2026-05-19 monthly 0.8 https://kieranupadrasta.com/principle-cards/principle_019.png Principle 019: First Call Hierarchy™ — Crisis Command Doctrine Card by Professor Kieran Upadrasta, CISSP CISM CRISC, Schiphol University The first call after breach is not legal. It is the executive who owns the consequence. Principle 019/100 from 100 Cyber Doctrine Principles by Professor Kieran Upadrasta, CISSP CISM CRISC, Schiphol University. Crisis Command. https://kieranupadrasta.com/principle-cards/principle_020.html 2026-05-19 monthly 0.8 https://kieranupadrasta.com/principle-cards/principle_020.png Principle 020: Vendor Concentration Trap™ — Supplier Concentration Doctrine Card by Professor Kieran Upadrasta, CISSP CISM CRISC, Schiphol University A single-provider stack is efficiency until the regulator calls it concentration risk. Principle 020/100 from 100 Cyber Doctrine Principles by Professor Kieran Upadrasta, CISSP CISM CRISC, Schiphol University. Supplier Concentration. https://kieranupadrasta.com/principle-cards/principle_021.html 2026-05-19 monthly 0.8 https://kieranupadrasta.com/principle-cards/principle_021.png Principle 021: Insider Threat Realism™ — Insider Risk Doctrine Card by Professor Kieran Upadrasta, CISSP CISM CRISC, Schiphol University The insider does not merely appear in the threat model. The insider often builds it. Govern accordingly. Principle 021/100 from 100 Cyber Doctrine Principles by Professor Kieran Upadrasta, CISSP CISM CRISC, Schiphol University. Insider Risk. https://kieranupadrasta.com/principle-cards/principle_022.html 2026-05-19 monthly 0.8 https://kieranupadrasta.com/principle-cards/principle_022.png Principle 022: SBOM Provenance Mandate™ — Software Supply Chain Doctrine Card by Professor Kieran Upadrasta, CISSP CISM CRISC, Schiphol University Code you cannot enumerate is risk you cannot disclose. The SBOM is the receipt for every signature. Principle 022/100 from 100 Cyber Doctrine Principles by Professor Kieran Upadrasta, CISSP CISM CRISC, Schiphol University. Software Supply Chain. https://kieranupadrasta.com/principle-cards/principle_023.html 2026-05-19 monthly 0.8 https://kieranupadrasta.com/principle-cards/principle_023.png Principle 023: Run-Time Truth Doctrine™ — Runtime Assurance Doctrine Card by Professor Kieran Upadrasta, CISSP CISM CRISC, Schiphol University Build-time guarantees expire when the workload starts. Runtime evidence is what regulators accept. Principle 023/100 from 100 Cyber Doctrine Principles by Professor Kieran Upadrasta, CISSP CISM CRISC, Schiphol University. Runtime Assurance. https://kieranupadrasta.com/principle-cards/principle_024.html 2026-05-19 monthly 0.8 https://kieranupadrasta.com/principle-cards/principle_024.png Principle 024: Defaults-Become-Decisions Doctrine™ — Configuration Doctrine Card by Professor Kieran Upadrasta, CISSP CISM CRISC, Schiphol University Every configuration you did not change is a decision you signed without reading. Principle 024/100 from 100 Cyber Doctrine Principles by Professor Kieran Upadrasta, CISSP CISM CRISC, Schiphol University. Configuration. https://kieranupadrasta.com/principle-cards/principle_025.html 2026-05-19 monthly 0.8 https://kieranupadrasta.com/principle-cards/principle_025.png Principle 025: Critical Skill Concentration Risk™ — Talent Concentration Doctrine Card by Professor Kieran Upadrasta, CISSP CISM CRISC, Schiphol University When the one engineer who understands the control leaves, the control leaves with them. Principle 025/100 from 100 Cyber Doctrine Principles by Professor Kieran Upadrasta, CISSP CISM CRISC, Schiphol University. Talent Concentration. https://kieranupadrasta.com/principle-cards/principle_026.html 2026-05-19 monthly 0.8 https://kieranupadrasta.com/principle-cards/principle_026.png Principle 026: Programme Discipline — Programme Discipline Doctrine Card by Professor Kieran Upadrasta, CISSP CISM CRISC, Schiphol University A programme that cannot state its next decision in one sentence is not a programme. It is a process. Principle 026/100 from 100 Cyber Doctrine Principles by Professor Kieran Upadrasta, CISSP CISM CRISC, Schiphol University. Programme Discipline. https://kieranupadrasta.com/principle-cards/principle_027.html 2026-05-19 monthly 0.8 https://kieranupadrasta.com/principle-cards/principle_027.png Principle 027: Operating Tempo Doctrine — Operating Model Doctrine Card by Professor Kieran Upadrasta, CISSP CISM CRISC, Schiphol University Tempo is the only governance metric that compounds. Improve it and every other metric follows. Principle 027/100 from 100 Cyber Doctrine Principles by Professor Kieran Upadrasta, CISSP CISM CRISC, Schiphol University. Operating Model. https://kieranupadrasta.com/principle-cards/principle_028.html 2026-05-19 monthly 0.8 https://kieranupadrasta.com/principle-cards/principle_028.png Principle 028: Single-Threaded Authority — Authority Doctrine Card by Professor Kieran Upadrasta, CISSP CISM CRISC, Schiphol University Distributed authority is theatre. Real authority is single-threaded, accountable, and revocable. Principle 028/100 from 100 Cyber Doctrine Principles by Professor Kieran Upadrasta, CISSP CISM CRISC, Schiphol University. Authority. https://kieranupadrasta.com/principle-cards/principle_029.html 2026-05-19 monthly 0.8 https://kieranupadrasta.com/principle-cards/principle_029.png Principle 029: Threat Intelligence Hierarchy — Threat Intelligence Doctrine Card by Professor Kieran Upadrasta, CISSP CISM CRISC, Schiphol University Intelligence that does not change a decision is content. Intelligence that does is doctrine. Principle 029/100 from 100 Cyber Doctrine Principles by Professor Kieran Upadrasta, CISSP CISM CRISC, Schiphol University. Threat Intelligence. https://kieranupadrasta.com/principle-cards/principle_030.html 2026-05-19 monthly 0.8 https://kieranupadrasta.com/principle-cards/principle_030.png Principle 030: Crown-Jewel Inversion Principle — Crown Jewels Doctrine Card by Professor Kieran Upadrasta, CISSP CISM CRISC, Schiphol University Crown jewels are not where value sits. They are where consequence collapses if compromised. Principle 030/100 from 100 Cyber Doctrine Principles by Professor Kieran Upadrasta, CISSP CISM CRISC, Schiphol University. Crown Jewels. https://kieranupadrasta.com/principle-cards/principle_031.html 2026-05-19 monthly 0.8 https://kieranupadrasta.com/principle-cards/principle_031.png Principle 031: Detection Engineering Mandate — Detection Doctrine Card by Professor Kieran Upadrasta, CISSP CISM CRISC, Schiphol University Every detection that triggers without an owned response is a notification, not a control. Principle 031/100 from 100 Cyber Doctrine Principles by Professor Kieran Upadrasta, CISSP CISM CRISC, Schiphol University. Detection. https://kieranupadrasta.com/principle-cards/principle_032.html 2026-05-19 monthly 0.8 https://kieranupadrasta.com/principle-cards/principle_032.png Principle 032: Forensic Readiness Discipline — Forensics Doctrine Card by Professor Kieran Upadrasta, CISSP CISM CRISC, Schiphol University If your incident investigation begins after the incident, you have already lost it. Principle 032/100 from 100 Cyber Doctrine Principles by Professor Kieran Upadrasta, CISSP CISM CRISC, Schiphol University. Forensics. https://kieranupadrasta.com/principle-cards/principle_033.html 2026-05-19 monthly 0.8 https://kieranupadrasta.com/principle-cards/principle_033.png Principle 033: Encryption Decree — Encryption Doctrine Card by Professor Kieran Upadrasta, CISSP CISM CRISC, Schiphol University Encryption without key custody is decorative. Custody without rotation is fossilised. Principle 033/100 from 100 Cyber Doctrine Principles by Professor Kieran Upadrasta, CISSP CISM CRISC, Schiphol University. Encryption. https://kieranupadrasta.com/principle-cards/principle_034.html 2026-05-19 monthly 0.8 https://kieranupadrasta.com/principle-cards/principle_034.png Principle 034: Public-Cloud Sovereignty Test — Cloud Sovereignty Doctrine Card by Professor Kieran Upadrasta, CISSP CISM CRISC, Schiphol University Sovereignty in cloud is measured in keys you hold and clauses you signed — nothing else. Principle 034/100 from 100 Cyber Doctrine Principles by Professor Kieran Upadrasta, CISSP CISM CRISC, Schiphol University. Cloud Sovereignty. https://kieranupadrasta.com/principle-cards/principle_035.html 2026-05-19 monthly 0.8 https://kieranupadrasta.com/principle-cards/principle_035.png Principle 035: Configuration Drift Doctrine — Configuration Doctrine Card by Professor Kieran Upadrasta, CISSP CISM CRISC, Schiphol University Configuration drift is the slowest, costliest breach. It has no perimeter and no headline. Principle 035/100 from 100 Cyber Doctrine Principles by Professor Kieran Upadrasta, CISSP CISM CRISC, Schiphol University. Configuration. https://kieranupadrasta.com/principle-cards/principle_036.html 2026-05-19 monthly 0.8 https://kieranupadrasta.com/principle-cards/principle_036.png Principle 036: Patch Cadence Realism — Vulnerability Management Doctrine Card by Professor Kieran Upadrasta, CISSP CISM CRISC, Schiphol University Patch cadence is published as policy and audited as legend. Reconcile or remove. Principle 036/100 from 100 Cyber Doctrine Principles by Professor Kieran Upadrasta, CISSP CISM CRISC, Schiphol University. Vulnerability Management. https://kieranupadrasta.com/principle-cards/principle_037.html 2026-05-19 monthly 0.8 https://kieranupadrasta.com/principle-cards/principle_037.png Principle 037: Vulnerability Triage Hierarchy — Vulnerability Management Doctrine Card by Professor Kieran Upadrasta, CISSP CISM CRISC, Schiphol University Severity ratings sort vulnerabilities. Exploitability decides which ones move you out of bed. Principle 037/100 from 100 Cyber Doctrine Principles by Professor Kieran Upadrasta, CISSP CISM CRISC, Schiphol University. Vulnerability Management. https://kieranupadrasta.com/principle-cards/principle_038.html 2026-05-19 monthly 0.8 https://kieranupadrasta.com/principle-cards/principle_038.png Principle 038: Logging Sufficiency Test — Logging Doctrine Card by Professor Kieran Upadrasta, CISSP CISM CRISC, Schiphol University Logs that cannot reconstruct the timeline within minutes are storage costs, not security. Principle 038/100 from 100 Cyber Doctrine Principles by Professor Kieran Upadrasta, CISSP CISM CRISC, Schiphol University. Logging. https://kieranupadrasta.com/principle-cards/principle_039.html 2026-05-19 monthly 0.8 https://kieranupadrasta.com/principle-cards/principle_039.png Principle 039: Identity Lifecycle Discipline — Identity Doctrine Card by Professor Kieran Upadrasta, CISSP CISM CRISC, Schiphol University Joiners, movers, leavers: the boring loop that decides whether identity is governance or theatre. Principle 039/100 from 100 Cyber Doctrine Principles by Professor Kieran Upadrasta, CISSP CISM CRISC, Schiphol University. Identity. https://kieranupadrasta.com/principle-cards/principle_040.html 2026-05-19 monthly 0.8 https://kieranupadrasta.com/principle-cards/principle_040.png Principle 040: Privileged Access Minimum — Privileged Access Doctrine Card by Professor Kieran Upadrasta, CISSP CISM CRISC, Schiphol University Standing privileged access is liability dressed as convenience. Default it to ephemeral. Principle 040/100 from 100 Cyber Doctrine Principles by Professor Kieran Upadrasta, CISSP CISM CRISC, Schiphol University. Privileged Access. https://kieranupadrasta.com/principle-cards/principle_041.html 2026-05-19 monthly 0.8 https://kieranupadrasta.com/principle-cards/principle_041.png Principle 041: Shadow IT Recognition — Shadow IT Doctrine Card by Professor Kieran Upadrasta, CISSP CISM CRISC, Schiphol University Shadow IT is not policy failure. It is a measurement of how easily the organisation can be told no. Principle 041/100 from 100 Cyber Doctrine Principles by Professor Kieran Upadrasta, CISSP CISM CRISC, Schiphol University. Shadow IT. https://kieranupadrasta.com/principle-cards/principle_042.html 2026-05-19 monthly 0.8 https://kieranupadrasta.com/principle-cards/principle_042.png Principle 042: Vendor Onboarding Mandate — Supplier Onboarding Doctrine Card by Professor Kieran Upadrasta, CISSP CISM CRISC, Schiphol University A vendor onboarded without evidence becomes a vendor offboarded under provable loss. Principle 042/100 from 100 Cyber Doctrine Principles by Professor Kieran Upadrasta, CISSP CISM CRISC, Schiphol University. Supplier Onboarding. https://kieranupadrasta.com/principle-cards/principle_043.html 2026-05-19 monthly 0.8 https://kieranupadrasta.com/principle-cards/principle_043.png Principle 043: Contractual Asymmetry Principle — Contracts Doctrine Card by Professor Kieran Upadrasta, CISSP CISM CRISC, Schiphol University Every clause not actively negotiated is a clause negotiated for someone else. Principle 043/100 from 100 Cyber Doctrine Principles by Professor Kieran Upadrasta, CISSP CISM CRISC, Schiphol University. Contracts. https://kieranupadrasta.com/principle-cards/principle_044.html 2026-05-19 monthly 0.8 https://kieranupadrasta.com/principle-cards/principle_044.png Principle 044: Procurement Cyber Gate — Procurement Doctrine Card by Professor Kieran Upadrasta, CISSP CISM CRISC, Schiphol University Procurement that skips cyber pre-qualification is procurement that bypasses governance. Principle 044/100 from 100 Cyber Doctrine Principles by Professor Kieran Upadrasta, CISSP CISM CRISC, Schiphol University. Procurement. https://kieranupadrasta.com/principle-cards/principle_045.html 2026-05-19 monthly 0.8 https://kieranupadrasta.com/principle-cards/principle_045.png Principle 045: Insurance Underwriting Realism — Insurance Doctrine Card by Professor Kieran Upadrasta, CISSP CISM CRISC, Schiphol University Cyber underwriters price what they can see. Make sure it survives forensic review. Principle 045/100 from 100 Cyber Doctrine Principles by Professor Kieran Upadrasta, CISSP CISM CRISC, Schiphol University. Insurance. https://kieranupadrasta.com/principle-cards/principle_046.html 2026-05-19 monthly 0.8 https://kieranupadrasta.com/principle-cards/principle_046.png Principle 046: Claim-Defensibility Doctrine — Claims Doctrine Card by Professor Kieran Upadrasta, CISSP CISM CRISC, Schiphol University A control that cannot defend a claim is a control that will become an exclusion. Principle 046/100 from 100 Cyber Doctrine Principles by Professor Kieran Upadrasta, CISSP CISM CRISC, Schiphol University. Claims. https://kieranupadrasta.com/principle-cards/principle_047.html 2026-05-19 monthly 0.8 https://kieranupadrasta.com/principle-cards/principle_047.png Principle 047: Quantification Sobriety — Risk Quantification Doctrine Card by Professor Kieran Upadrasta, CISSP CISM CRISC, Schiphol University Quantification is useful only when it changes a decision. Otherwise, it is performance. Principle 047/100 from 100 Cyber Doctrine Principles by Professor Kieran Upadrasta, CISSP CISM CRISC, Schiphol University. Risk Quantification. https://kieranupadrasta.com/principle-cards/principle_048.html 2026-05-19 monthly 0.8 https://kieranupadrasta.com/principle-cards/principle_048.png Principle 048: Risk Appetite Coherence — Risk Appetite Doctrine Card by Professor Kieran Upadrasta, CISSP CISM CRISC, Schiphol University Risk appetite means nothing until exceeded. Put the tripwires in before the breach. Principle 048/100 from 100 Cyber Doctrine Principles by Professor Kieran Upadrasta, CISSP CISM CRISC, Schiphol University. Risk Appetite. https://kieranupadrasta.com/principle-cards/principle_049.html 2026-05-19 monthly 0.8 https://kieranupadrasta.com/principle-cards/principle_049.png Principle 049: Risk-Register Realism — Risk Register Doctrine Card by Professor Kieran Upadrasta, CISSP CISM CRISC, Schiphol University A risk register without owners, dates, and money is a literature review. Principle 049/100 from 100 Cyber Doctrine Principles by Professor Kieran Upadrasta, CISSP CISM CRISC, Schiphol University. Risk Register. https://kieranupadrasta.com/principle-cards/principle_050.html 2026-05-19 monthly 0.8 https://kieranupadrasta.com/principle-cards/principle_050.png Principle 050: Audit Findings Discipline — Audit Doctrine Card by Professor Kieran Upadrasta, CISSP CISM CRISC, Schiphol University An audit finding without a board-approved remediation date is a finding the board does not own. Principle 050/100 from 100 Cyber Doctrine Principles by Professor Kieran Upadrasta, CISSP CISM CRISC, Schiphol University. Audit. https://kieranupadrasta.com/principle-cards/principle_051.html 2026-05-19 monthly 0.8 https://kieranupadrasta.com/principle-cards/principle_051.png Principle 051: Continuous Assurance Mandate — Assurance Doctrine Card by Professor Kieran Upadrasta, CISSP CISM CRISC, Schiphol University Annual attestation is a snapshot. Continuous assurance is a contract. Principle 051/100 from 100 Cyber Doctrine Principles by Professor Kieran Upadrasta, CISSP CISM CRISC, Schiphol University. Assurance. https://kieranupadrasta.com/principle-cards/principle_052.html 2026-05-19 monthly 0.8 https://kieranupadrasta.com/principle-cards/principle_052.png Principle 052: Three-Lines Operational Truth — Governance Lines Doctrine Card by Professor Kieran Upadrasta, CISSP CISM CRISC, Schiphol University Three lines of defence collapse to one when only the first knows what is happening. Principle 052/100 from 100 Cyber Doctrine Principles by Professor Kieran Upadrasta, CISSP CISM CRISC, Schiphol University. Governance Lines. https://kieranupadrasta.com/principle-cards/principle_053.html 2026-05-19 monthly 0.8 https://kieranupadrasta.com/principle-cards/principle_053.png Principle 053: Internal-Audit Independence Test — Internal Audit Doctrine Card by Professor Kieran Upadrasta, CISSP CISM CRISC, Schiphol University Audit independence is measured by what the auditor may write to the board. Principle 053/100 from 100 Cyber Doctrine Principles by Professor Kieran Upadrasta, CISSP CISM CRISC, Schiphol University. Internal Audit. https://kieranupadrasta.com/principle-cards/principle_054.html 2026-05-19 monthly 0.8 https://kieranupadrasta.com/principle-cards/principle_054.png Principle 054: Whistleblower Doctrine — Ethics Doctrine Card by Professor Kieran Upadrasta, CISSP CISM CRISC, Schiphol University If anomaly-to-accountability runs through command, it is not a route. It is a filter. Principle 054/100 from 100 Cyber Doctrine Principles by Professor Kieran Upadrasta, CISSP CISM CRISC, Schiphol University. Ethics. https://kieranupadrasta.com/principle-cards/principle_055.html 2026-05-19 monthly 0.8 https://kieranupadrasta.com/principle-cards/principle_055.png Principle 055: Crisis Communications Mandate — Crisis Comms Doctrine Card by Professor Kieran Upadrasta, CISSP CISM CRISC, Schiphol University Crisis communications drafted during crisis confess that there was no plan. Principle 055/100 from 100 Cyber Doctrine Principles by Professor Kieran Upadrasta, CISSP CISM CRISC, Schiphol University. Crisis Comms. https://kieranupadrasta.com/principle-cards/principle_056.html 2026-05-19 monthly 0.8 https://kieranupadrasta.com/principle-cards/principle_056.png Principle 056: Forensic Custody Chain — Forensics Doctrine Card by Professor Kieran Upadrasta, CISSP CISM CRISC, Schiphol University Chain of custody preserved badly is chain of custody not preserved at all. Principle 056/100 from 100 Cyber Doctrine Principles by Professor Kieran Upadrasta, CISSP CISM CRISC, Schiphol University. Forensics. https://kieranupadrasta.com/principle-cards/principle_057.html 2026-05-19 monthly 0.8 https://kieranupadrasta.com/principle-cards/principle_057.png Principle 057: Tabletop Exercise Realism — Exercises Doctrine Card by Professor Kieran Upadrasta, CISSP CISM CRISC, Schiphol University Tabletop exercises that do not end in a board decision are calendar entries. Principle 057/100 from 100 Cyber Doctrine Principles by Professor Kieran Upadrasta, CISSP CISM CRISC, Schiphol University. Exercises. https://kieranupadrasta.com/principle-cards/principle_058.html 2026-05-19 monthly 0.8 https://kieranupadrasta.com/principle-cards/principle_058.png Principle 058: Restoration-Tested Backups — Backups Doctrine Card by Professor Kieran Upadrasta, CISSP CISM CRISC, Schiphol University Backups that have not been restored are not backups. They are encrypted hope. Principle 058/100 from 100 Cyber Doctrine Principles by Professor Kieran Upadrasta, CISSP CISM CRISC, Schiphol University. Backups. https://kieranupadrasta.com/principle-cards/principle_059.html 2026-05-19 monthly 0.8 https://kieranupadrasta.com/principle-cards/principle_059.png Principle 059: Recovery-Time Honesty — Recovery Doctrine Card by Professor Kieran Upadrasta, CISSP CISM CRISC, Schiphol University Recovery-time objectives unverified by drills are aspirations the board should reject. Principle 059/100 from 100 Cyber Doctrine Principles by Professor Kieran Upadrasta, CISSP CISM CRISC, Schiphol University. Recovery. https://kieranupadrasta.com/principle-cards/principle_060.html 2026-05-19 monthly 0.8 https://kieranupadrasta.com/principle-cards/principle_060.png Principle 060: Operational-Resilience Inversion — Resilience Doctrine Card by Professor Kieran Upadrasta, CISSP CISM CRISC, Schiphol University Resilience is not what technology does. It is what the institution does when technology does not. Principle 060/100 from 100 Cyber Doctrine Principles by Professor Kieran Upadrasta, CISSP CISM CRISC, Schiphol University. Resilience. https://kieranupadrasta.com/principle-cards/principle_061.html 2026-05-19 monthly 0.8 https://kieranupadrasta.com/principle-cards/principle_061.png Principle 061: Severance & Liability Doctrine — Liability Doctrine Card by Professor Kieran Upadrasta, CISSP CISM CRISC, Schiphol University Liability that cannot be transferred, insured, or absorbed must be reduced. There is no fourth option. Principle 061/100 from 100 Cyber Doctrine Principles by Professor Kieran Upadrasta, CISSP CISM CRISC, Schiphol University. Liability. https://kieranupadrasta.com/principle-cards/principle_062.html 2026-05-19 monthly 0.8 https://kieranupadrasta.com/principle-cards/principle_062.png Principle 062: Data Sovereignty Discipline — Data Sovereignty Doctrine Card by Professor Kieran Upadrasta, CISSP CISM CRISC, Schiphol University Data sovereignty is decided at the contract, not at the data centre. Principle 062/100 from 100 Cyber Doctrine Principles by Professor Kieran Upadrasta, CISSP CISM CRISC, Schiphol University. Data Sovereignty. https://kieranupadrasta.com/principle-cards/principle_063.html 2026-05-19 monthly 0.8 https://kieranupadrasta.com/principle-cards/principle_063.png Principle 063: Cross-Border Transfer Mandate — Cross-Border Data Doctrine Card by Professor Kieran Upadrasta, CISSP CISM CRISC, Schiphol University Every cross-border transfer is a contract. Absence of one is a breach in waiting. Principle 063/100 from 100 Cyber Doctrine Principles by Professor Kieran Upadrasta, CISSP CISM CRISC, Schiphol University. Cross-Border Data. https://kieranupadrasta.com/principle-cards/principle_064.html 2026-05-19 monthly 0.8 https://kieranupadrasta.com/principle-cards/principle_064.png Principle 064: Privacy-by-Design Realism — Privacy Doctrine Card by Professor Kieran Upadrasta, CISSP CISM CRISC, Schiphol University Privacy retrofitted is privacy lost. Build it in or rebuild around it. Principle 064/100 from 100 Cyber Doctrine Principles by Professor Kieran Upadrasta, CISSP CISM CRISC, Schiphol University. Privacy. https://kieranupadrasta.com/principle-cards/principle_065.html 2026-05-19 monthly 0.8 https://kieranupadrasta.com/principle-cards/principle_065.png Principle 065: Subject-Rights Operating Model — Data Rights Doctrine Card by Professor Kieran Upadrasta, CISSP CISM CRISC, Schiphol University Subject-rights requests test the operating model. If you fail at scale, fix the model. Principle 065/100 from 100 Cyber Doctrine Principles by Professor Kieran Upadrasta, CISSP CISM CRISC, Schiphol University. Data Rights. https://kieranupadrasta.com/principle-cards/principle_066.html 2026-05-19 monthly 0.8 https://kieranupadrasta.com/principle-cards/principle_066.png Principle 066: Data Minimisation Mandate — Data Minimisation Doctrine Card by Professor Kieran Upadrasta, CISSP CISM CRISC, Schiphol University Every field you do not collect is a breach you do not suffer. Discipline shows in what is absent. Principle 066/100 from 100 Cyber Doctrine Principles by Professor Kieran Upadrasta, CISSP CISM CRISC, Schiphol University. Data Minimisation. https://kieranupadrasta.com/principle-cards/principle_067.html 2026-05-19 monthly 0.8 https://kieranupadrasta.com/principle-cards/principle_067.png Principle 067: Retention Mandate — Retention Doctrine Card by Professor Kieran Upadrasta, CISSP CISM CRISC, Schiphol University Data kept past purpose becomes evidence in someone else's case. Retention is governance, not storage. Principle 067/100 from 100 Cyber Doctrine Principles by Professor Kieran Upadrasta, CISSP CISM CRISC, Schiphol University. Retention. https://kieranupadrasta.com/principle-cards/principle_068.html 2026-05-19 monthly 0.8 https://kieranupadrasta.com/principle-cards/principle_068.png Principle 068: Cyber-Physical Engineering Mandate — OT / ICS Doctrine Card by Professor Kieran Upadrasta, CISSP CISM CRISC, Schiphol University OT cyber is engineering, not IT. Apply IT thinking and the plant teaches you the difference. Principle 068/100 from 100 Cyber Doctrine Principles by Professor Kieran Upadrasta, CISSP CISM CRISC, Schiphol University. OT / ICS. https://kieranupadrasta.com/principle-cards/principle_069.html 2026-05-19 monthly 0.8 https://kieranupadrasta.com/principle-cards/principle_069.png Principle 069: Safety-Cyber Convergence — Safety Doctrine Card by Professor Kieran Upadrasta, CISSP CISM CRISC, Schiphol University Safety integrity and cyber integrity now share a budget, regulator, and failure mode. Principle 069/100 from 100 Cyber Doctrine Principles by Professor Kieran Upadrasta, CISSP CISM CRISC, Schiphol University. Safety. https://kieranupadrasta.com/principle-cards/principle_070.html 2026-05-19 monthly 0.8 https://kieranupadrasta.com/principle-cards/principle_070.png Principle 070: ICS Patch Doctrine — ICS Doctrine Card by Professor Kieran Upadrasta, CISSP CISM CRISC, Schiphol University ICS patching is a maintenance window, a safety case, and a vendor negotiation — in that order. Principle 070/100 from 100 Cyber Doctrine Principles by Professor Kieran Upadrasta, CISSP CISM CRISC, Schiphol University. ICS. https://kieranupadrasta.com/principle-cards/principle_071.html 2026-05-19 monthly 0.8 https://kieranupadrasta.com/principle-cards/principle_071.png Principle 071: Critical-Infrastructure Inversion — Critical Infrastructure Doctrine Card by Professor Kieran Upadrasta, CISSP CISM CRISC, Schiphol University Critical infrastructure is critical until incident. After incident it is public consequence. Principle 071/100 from 100 Cyber Doctrine Principles by Professor Kieran Upadrasta, CISSP CISM CRISC, Schiphol University. Critical Infrastructure. https://kieranupadrasta.com/principle-cards/principle_072.html 2026-05-19 monthly 0.8 https://kieranupadrasta.com/principle-cards/principle_072.png Principle 072: National-Resilience Mandate — Essential Services Doctrine Card by Professor Kieran Upadrasta, CISSP CISM CRISC, Schiphol University Operators of essential services answer to two regimes: the supervisor's and the public's. Principle 072/100 from 100 Cyber Doctrine Principles by Professor Kieran Upadrasta, CISSP CISM CRISC, Schiphol University. Essential Services. https://kieranupadrasta.com/principle-cards/principle_073.html 2026-05-19 monthly 0.8 https://kieranupadrasta.com/principle-cards/principle_073.png Principle 073: Geopolitical Cyber Realism — Geopolitics Doctrine Card by Professor Kieran Upadrasta, CISSP CISM CRISC, Schiphol University Your threat model is your geography. Update it as the map changes. Principle 073/100 from 100 Cyber Doctrine Principles by Professor Kieran Upadrasta, CISSP CISM CRISC, Schiphol University. Geopolitics. https://kieranupadrasta.com/principle-cards/principle_074.html 2026-05-19 monthly 0.8 https://kieranupadrasta.com/principle-cards/principle_074.png Principle 074: Sanctions Compliance Mandate — Sanctions Doctrine Card by Professor Kieran Upadrasta, CISSP CISM CRISC, Schiphol University Sanctions compliance is a cyber control. Treat it as one and your blast radius shrinks. Principle 074/100 from 100 Cyber Doctrine Principles by Professor Kieran Upadrasta, CISSP CISM CRISC, Schiphol University. Sanctions. https://kieranupadrasta.com/principle-cards/principle_075.html 2026-05-19 monthly 0.8 https://kieranupadrasta.com/principle-cards/principle_075.png Principle 075: State-Aligned Threat Doctrine — State Threats Doctrine Card by Professor Kieran Upadrasta, CISSP CISM CRISC, Schiphol University State-aligned threats are now baseline threats. Architecting around them is architecting for everyone. Principle 075/100 from 100 Cyber Doctrine Principles by Professor Kieran Upadrasta, CISSP CISM CRISC, Schiphol University. State Threats. https://kieranupadrasta.com/principle-cards/principle_076.html 2026-05-19 monthly 0.8 https://kieranupadrasta.com/principle-cards/principle_076.png Principle 076: Quantum-Risk Time Horizon — Quantum Doctrine Card by Professor Kieran Upadrasta, CISSP CISM CRISC, Schiphol University Quantum risk is a 2026 problem because 2030 data is being copied today. Principle 076/100 from 100 Cyber Doctrine Principles by Professor Kieran Upadrasta, CISSP CISM CRISC, Schiphol University. Quantum. https://kieranupadrasta.com/principle-cards/principle_077.html 2026-05-19 monthly 0.8 https://kieranupadrasta.com/principle-cards/principle_077.png Principle 077: Post-Quantum Migration Mandate — Post-Quantum Doctrine Card by Professor Kieran Upadrasta, CISSP CISM CRISC, Schiphol University Crypto migration is a multi-year programme. Start it the day you classify the data. Principle 077/100 from 100 Cyber Doctrine Principles by Professor Kieran Upadrasta, CISSP CISM CRISC, Schiphol University. Post-Quantum. https://kieranupadrasta.com/principle-cards/principle_078.html 2026-05-19 monthly 0.8 https://kieranupadrasta.com/principle-cards/principle_078.png Principle 078: Cipher Inventory Discipline — Crypto Inventory Doctrine Card by Professor Kieran Upadrasta, CISSP CISM CRISC, Schiphol University If you cannot list every cipher in your estate, you cannot migrate any of them. Principle 078/100 from 100 Cyber Doctrine Principles by Professor Kieran Upadrasta, CISSP CISM CRISC, Schiphol University. Crypto Inventory. https://kieranupadrasta.com/principle-cards/principle_079.html 2026-05-19 monthly 0.8 https://kieranupadrasta.com/principle-cards/principle_079.png Principle 079: Hardware Trust Doctrine — Hardware Trust Doctrine Card by Professor Kieran Upadrasta, CISSP CISM CRISC, Schiphol University Hardware roots of trust are policy, supply chain, and physics. Lose one and you lose the root. Principle 079/100 from 100 Cyber Doctrine Principles by Professor Kieran Upadrasta, CISSP CISM CRISC, Schiphol University. Hardware Trust. https://kieranupadrasta.com/principle-cards/principle_080.html 2026-05-19 monthly 0.8 https://kieranupadrasta.com/principle-cards/principle_080.png Principle 080: Firmware Governance Mandate — Firmware Doctrine Card by Professor Kieran Upadrasta, CISSP CISM CRISC, Schiphol University Firmware is the controlled substance of cyber. Track it like one or expect the breach equivalent. Principle 080/100 from 100 Cyber Doctrine Principles by Professor Kieran Upadrasta, CISSP CISM CRISC, Schiphol University. Firmware. https://kieranupadrasta.com/principle-cards/principle_081.html 2026-05-19 monthly 0.8 https://kieranupadrasta.com/principle-cards/principle_081.png Principle 081: SBOM Mandate — SBOM Doctrine Card by Professor Kieran Upadrasta, CISSP CISM CRISC, Schiphol University If your supplier cannot produce an SBOM, you cannot produce a defence. Principle 081/100 from 100 Cyber Doctrine Principles by Professor Kieran Upadrasta, CISSP CISM CRISC, Schiphol University. SBOM. https://kieranupadrasta.com/principle-cards/principle_082.html 2026-05-19 monthly 0.8 https://kieranupadrasta.com/principle-cards/principle_082.png Principle 082: Open-Source Stewardship — Open Source Doctrine Card by Professor Kieran Upadrasta, CISSP CISM CRISC, Schiphol University Open source is a dependency, not a gift. Govern it as a supplier with no SLA. Principle 082/100 from 100 Cyber Doctrine Principles by Professor Kieran Upadrasta, CISSP CISM CRISC, Schiphol University. Open Source. https://kieranupadrasta.com/principle-cards/principle_083.html 2026-05-19 monthly 0.8 https://kieranupadrasta.com/principle-cards/principle_083.png Principle 083: AI Provenance Mandate — AI Provenance Doctrine Card by Professor Kieran Upadrasta, CISSP CISM CRISC, Schiphol University Every AI decision must be traceable to data, weights, and authority. Lose one and accountability collapses. Principle 083/100 from 100 Cyber Doctrine Principles by Professor Kieran Upadrasta, CISSP CISM CRISC, Schiphol University. AI Provenance. https://kieranupadrasta.com/principle-cards/principle_084.html 2026-05-19 monthly 0.8 https://kieranupadrasta.com/principle-cards/principle_084.png Principle 084: Model Drift Discipline — Model Drift Doctrine Card by Professor Kieran Upadrasta, CISSP CISM CRISC, Schiphol University Models drift. Decisions drift with them. Govern drift or stop calling it governance. Principle 084/100 from 100 Cyber Doctrine Principles by Professor Kieran Upadrasta, CISSP CISM CRISC, Schiphol University. Model Drift. https://kieranupadrasta.com/principle-cards/principle_085.html 2026-05-19 monthly 0.8 https://kieranupadrasta.com/principle-cards/principle_085.png Principle 085: Training-Data Custody — Training Data Doctrine Card by Professor Kieran Upadrasta, CISSP CISM CRISC, Schiphol University Training data is a regulated asset. Treat it as one or watch it become evidence. Principle 085/100 from 100 Cyber Doctrine Principles by Professor Kieran Upadrasta, CISSP CISM CRISC, Schiphol University. Training Data. https://kieranupadrasta.com/principle-cards/principle_086.html 2026-05-19 monthly 0.8 https://kieranupadrasta.com/principle-cards/principle_086.png Principle 086: Prompt-Injection Realism — Prompt Injection Doctrine Card by Professor Kieran Upadrasta, CISSP CISM CRISC, Schiphol University Prompt injection is the new SQL injection. The lesson is unchanged: trust no input. Principle 086/100 from 100 Cyber Doctrine Principles by Professor Kieran Upadrasta, CISSP CISM CRISC, Schiphol University. Prompt Injection. https://kieranupadrasta.com/principle-cards/principle_087.html 2026-05-19 monthly 0.8 https://kieranupadrasta.com/principle-cards/principle_087.png Principle 087: Agentic-Autonomy Test — Agentic AI Doctrine Card by Professor Kieran Upadrasta, CISSP CISM CRISC, Schiphol University Every autonomous action your system can take must have a named human accountable for its outcome. Principle 087/100 from 100 Cyber Doctrine Principles by Professor Kieran Upadrasta, CISSP CISM CRISC, Schiphol University. Agentic AI. https://kieranupadrasta.com/principle-cards/principle_088.html 2026-05-19 monthly 0.8 https://kieranupadrasta.com/principle-cards/principle_088.png Principle 088: AI-Assisted Decision Provenance — AI Decisions Doctrine Card by Professor Kieran Upadrasta, CISSP CISM CRISC, Schiphol University If you cannot explain why the AI agreed, you cannot defend why you did. Principle 088/100 from 100 Cyber Doctrine Principles by Professor Kieran Upadrasta, CISSP CISM CRISC, Schiphol University. AI Decisions. https://kieranupadrasta.com/principle-cards/principle_089.html 2026-05-19 monthly 0.8 https://kieranupadrasta.com/principle-cards/principle_089.png Principle 089: Bias-Audit Mandate — Bias Doctrine Card by Professor Kieran Upadrasta, CISSP CISM CRISC, Schiphol University Bias audited annually is bias governed. Bias audited at incident is bias litigated. Principle 089/100 from 100 Cyber Doctrine Principles by Professor Kieran Upadrasta, CISSP CISM CRISC, Schiphol University. Bias. https://kieranupadrasta.com/principle-cards/principle_090.html 2026-05-19 monthly 0.8 https://kieranupadrasta.com/principle-cards/principle_090.png Principle 090: Disinformation Operational Test — Disinformation Doctrine Card by Professor Kieran Upadrasta, CISSP CISM CRISC, Schiphol University Operational disinformation is now cyber risk. Reputation is an attack surface. Principle 090/100 from 100 Cyber Doctrine Principles by Professor Kieran Upadrasta, CISSP CISM CRISC, Schiphol University. Disinformation. https://kieranupadrasta.com/principle-cards/principle_091.html 2026-05-19 monthly 0.8 https://kieranupadrasta.com/principle-cards/principle_091.png Principle 091: Insider Threat Realism Update — Insider Risk Doctrine Card by Professor Kieran Upadrasta, CISSP CISM CRISC, Schiphol University Insider threat is no longer the disgruntled employee. It is the privileged identity used by anyone. Principle 091/100 from 100 Cyber Doctrine Principles by Professor Kieran Upadrasta, CISSP CISM CRISC, Schiphol University. Insider Risk. https://kieranupadrasta.com/principle-cards/principle_092.html 2026-05-19 monthly 0.8 https://kieranupadrasta.com/principle-cards/principle_092.png Principle 092: Talent Concentration Inversion — Talent Risk Doctrine Card by Professor Kieran Upadrasta, CISSP CISM CRISC, Schiphol University Talent that cannot be cross-trained becomes risk. Talent that cannot be retained becomes liability. Principle 092/100 from 100 Cyber Doctrine Principles by Professor Kieran Upadrasta, CISSP CISM CRISC, Schiphol University. Talent Risk. https://kieranupadrasta.com/principle-cards/principle_093.html 2026-05-19 monthly 0.8 https://kieranupadrasta.com/principle-cards/principle_093.png Principle 093: Hiring-Pipeline Discipline — Hiring Doctrine Card by Professor Kieran Upadrasta, CISSP CISM CRISC, Schiphol University A hiring pipeline is governance infrastructure. Underfund it and audit findings repeat. Principle 093/100 from 100 Cyber Doctrine Principles by Professor Kieran Upadrasta, CISSP CISM CRISC, Schiphol University. Hiring. https://kieranupadrasta.com/principle-cards/principle_094.html 2026-05-19 monthly 0.8 https://kieranupadrasta.com/principle-cards/principle_094.png Principle 094: Skills-Currency Mandate — Skills Doctrine Card by Professor Kieran Upadrasta, CISSP CISM CRISC, Schiphol University Skills lapse faster than certifications. Audit currency, not credentials. Principle 094/100 from 100 Cyber Doctrine Principles by Professor Kieran Upadrasta, CISSP CISM CRISC, Schiphol University. Skills. https://kieranupadrasta.com/principle-cards/principle_095.html 2026-05-19 monthly 0.8 https://kieranupadrasta.com/principle-cards/principle_095.png Principle 095: Doctrine-Author Continuity — Doctrine Doctrine Card by Professor Kieran Upadrasta, CISSP CISM CRISC, Schiphol University Doctrine that depends on its author ends with its author. Codify or expect collapse. Principle 095/100 from 100 Cyber Doctrine Principles by Professor Kieran Upadrasta, CISSP CISM CRISC, Schiphol University. Doctrine. https://kieranupadrasta.com/principle-cards/principle_096.html 2026-05-19 monthly 0.8 https://kieranupadrasta.com/principle-cards/principle_096.png Principle 096: Knowledge-Capture Discipline — Knowledge Doctrine Card by Professor Kieran Upadrasta, CISSP CISM CRISC, Schiphol University Tribal knowledge is a fault line. Convert it to doctrine before the senior leaver takes production with them. Principle 096/100 from 100 Cyber Doctrine Principles by Professor Kieran Upadrasta, CISSP CISM CRISC, Schiphol University. Knowledge. https://kieranupadrasta.com/principle-cards/principle_097.html 2026-05-19 monthly 0.8 https://kieranupadrasta.com/principle-cards/principle_097.png Principle 097: Board-Reporting Honesty — Board Reporting Doctrine Card by Professor Kieran Upadrasta, CISSP CISM CRISC, Schiphol University Board reports that omit what went wrong are confidence trades. Eventually one fails. Principle 097/100 from 100 Cyber Doctrine Principles by Professor Kieran Upadrasta, CISSP CISM CRISC, Schiphol University. Board Reporting. https://kieranupadrasta.com/principle-cards/principle_098.html 2026-05-19 monthly 0.8 https://kieranupadrasta.com/principle-cards/principle_098.png Principle 098: Materiality Calibration — Materiality Doctrine Card by Professor Kieran Upadrasta, CISSP CISM CRISC, Schiphol University Materiality is decided by the board before the incident — or by the regulator after. Principle 098/100 from 100 Cyber Doctrine Principles by Professor Kieran Upadrasta, CISSP CISM CRISC, Schiphol University. Materiality. https://kieranupadrasta.com/principle-cards/principle_099.html 2026-05-19 monthly 0.8 https://kieranupadrasta.com/principle-cards/principle_099.png Principle 099: Disclosure-Timing Discipline — Disclosure Doctrine Card by Professor Kieran Upadrasta, CISSP CISM CRISC, Schiphol University Disclosure timing is a board-level decision. Push it down and it will land on the news cycle. Principle 099/100 from 100 Cyber Doctrine Principles by Professor Kieran Upadrasta, CISSP CISM CRISC, Schiphol University. Disclosure. https://kieranupadrasta.com/principle-cards/principle_100.html 2026-05-19 monthly 0.8 https://kieranupadrasta.com/principle-cards/principle_100.png Principle 100: Doctrine Closing Principle — Institutional Architecture Doctrine Card by Professor Kieran Upadrasta, CISSP CISM CRISC, Schiphol University A doctrine that survives twenty years and three regulators is no longer doctrine. It is institutional architecture. Principle 100/100 from 100 Cyber Doctrine Principles by Professor Kieran Upadrasta, CISSP CISM CRISC, Schiphol University. Institutional Architecture. https://kieranupadrasta.com/principle-cards/principle_101.html https://kieranupadrasta.com/principle-cards/principle_101.png Principle 101: Doctrine Closing Principle | Professor Kieran Upadrasta, CISSP CISM CRISC, Schiphol University Principle 101: Doctrine Closing Principle — Institutional Architecture doctrine. Professor Kieran Upadrasta, CISSP CISM CRISC, Schiphol University. https://kieranupadrasta.com/principle-cards/principle_102.html https://kieranupadrasta.com/principle-cards/principle_102.png Principle 102: Algorithmic Liability Doctrine™ | Professor Kieran Upadrasta, CISSP CISM CRISC, Schiphol University Principle 102: Algorithmic Liability Doctrine™ — AI Liability doctrine. Professor Kieran Upadrasta, CISSP CISM CRISC, Schiphol University. https://kieranupadrasta.com/principle-cards/principle_103.html https://kieranupadrasta.com/principle-cards/principle_103.png Principle 103: Invisible Breach Doctrine™ | Professor Kieran Upadrasta, CISSP CISM CRISC, Schiphol University Principle 103: Invisible Breach Doctrine™ — Shadow AI doctrine. Professor Kieran Upadrasta, CISSP CISM CRISC, Schiphol University. https://kieranupadrasta.com/principle-cards/principle_104.html https://kieranupadrasta.com/principle-cards/principle_104.png Principle 104: AI Act Horizon Doctrine™ | Professor Kieran Upadrasta, CISSP CISM CRISC, Schiphol University Principle 104: AI Act Horizon Doctrine™ — AI Act doctrine. Professor Kieran Upadrasta, CISSP CISM CRISC, Schiphol University. https://kieranupadrasta.com/principle-cards/principle_105.html https://kieranupadrasta.com/principle-cards/principle_105.png Principle 105: Silent Drift Doctrine™ | Professor Kieran Upadrasta, CISSP CISM CRISC, Schiphol University Principle 105: Silent Drift Doctrine™ — Model Drift doctrine. Professor Kieran Upadrasta, CISSP CISM CRISC, Schiphol University. https://kieranupadrasta.com/principle-cards/principle_106.html https://kieranupadrasta.com/principle-cards/principle_106.png Principle 106: Upstream Threat Doctrine™ | Professor Kieran Upadrasta, CISSP CISM CRISC, Schiphol University Principle 106: Upstream Threat Doctrine™ — Upstream Data doctrine. Professor Kieran Upadrasta, CISSP CISM CRISC, Schiphol University. https://kieranupadrasta.com/principle-cards/principle_107.html https://kieranupadrasta.com/principle-cards/principle_107.png Principle 107: Semantic Firewall Doctrine™ | Professor Kieran Upadrasta, CISSP CISM CRISC, Schiphol University Principle 107: Semantic Firewall Doctrine™ — Prompt Injection doctrine. Professor Kieran Upadrasta, CISSP CISM CRISC, Schiphol University. https://kieranupadrasta.com/principle-cards/principle_108.html https://kieranupadrasta.com/principle-cards/principle_108.png Principle 108: Machine Decision Evidence™ | Professor Kieran Upadrasta, CISSP CISM CRISC, Schiphol University Principle 108: Machine Decision Evidence™ — AI Evidence doctrine. Professor Kieran Upadrasta, CISSP CISM CRISC, Schiphol University. https://kieranupadrasta.com/principle-cards/principle_109.html https://kieranupadrasta.com/principle-cards/principle_109.png Principle 109: Intimate Data Doctrine™ | Professor Kieran Upadrasta, CISSP CISM CRISC, Schiphol University Principle 109: Intimate Data Doctrine™ — Biometrics doctrine. Professor Kieran Upadrasta, CISSP CISM CRISC, Schiphol University. https://kieranupadrasta.com/principle-cards/principle_110.html https://kieranupadrasta.com/principle-cards/principle_110.png Principle 110: Unguided Weapon Doctrine™ | Professor Kieran Upadrasta, CISSP CISM CRISC, Schiphol University Principle 110: Unguided Weapon Doctrine™ — Autonomous Systems doctrine. Professor Kieran Upadrasta, CISSP CISM CRISC, Schiphol University. https://kieranupadrasta.com/principle-cards/principle_111.html https://kieranupadrasta.com/principle-cards/principle_111.png Principle 111: Sentient Inventory Doctrine™ | Professor Kieran Upadrasta, CISSP CISM CRISC, Schiphol University Principle 111: Sentient Inventory Doctrine™ — Algorithm Inventory doctrine. Professor Kieran Upadrasta, CISSP CISM CRISC, Schiphol University. https://kieranupadrasta.com/principle-cards/principle_112.html https://kieranupadrasta.com/principle-cards/principle_112.png Principle 112: Negligence Trap Doctrine™ | Professor Kieran Upadrasta, CISSP CISM CRISC, Schiphol University Principle 112: Negligence Trap Doctrine™ — Board Liability doctrine. Professor Kieran Upadrasta, CISSP CISM CRISC, Schiphol University. https://kieranupadrasta.com/principle-cards/principle_113.html https://kieranupadrasta.com/principle-cards/principle_113.png Principle 113: Reporting Line Doctrine™ | Professor Kieran Upadrasta, CISSP CISM CRISC, Schiphol University Principle 113: Reporting Line Doctrine™ — CISO Reporting doctrine. Professor Kieran Upadrasta, CISSP CISM CRISC, Schiphol University. https://kieranupadrasta.com/principle-cards/principle_114.html https://kieranupadrasta.com/principle-cards/principle_114.png Principle 114: Asymmetric Warfare Doctrine™ | Professor Kieran Upadrasta, CISSP CISM CRISC, Schiphol University Principle 114: Asymmetric Warfare Doctrine™ — Cyber Budget doctrine. Professor Kieran Upadrasta, CISSP CISM CRISC, Schiphol University. https://kieranupadrasta.com/principle-cards/principle_115.html https://kieranupadrasta.com/principle-cards/principle_115.png Principle 115: Tolerable Threshold Doctrine™ | Professor Kieran Upadrasta, CISSP CISM CRISC, Schiphol University Principle 115: Tolerable Threshold Doctrine™ — Risk Appetite doctrine. Professor Kieran Upadrasta, CISSP CISM CRISC, Schiphol University. https://kieranupadrasta.com/principle-cards/principle_116.html https://kieranupadrasta.com/principle-cards/principle_116.png Principle 116: Compliance Illusion Doctrine™ | Professor Kieran Upadrasta, CISSP CISM CRISC, Schiphol University Principle 116: Compliance Illusion Doctrine™ — Compliance Ceiling doctrine. Professor Kieran Upadrasta, CISSP CISM CRISC, Schiphol University. https://kieranupadrasta.com/principle-cards/principle_117.html https://kieranupadrasta.com/principle-cards/principle_117.png Principle 117: Digital Asset Doctrine™ | Professor Kieran Upadrasta, CISSP CISM CRISC, Schiphol University Principle 117: Digital Asset Doctrine™ — Balance Sheet doctrine. Professor Kieran Upadrasta, CISSP CISM CRISC, Schiphol University. https://kieranupadrasta.com/principle-cards/principle_118.html https://kieranupadrasta.com/principle-cards/principle_118.png Principle 118: Actionable Signal Doctrine™ | Professor Kieran Upadrasta, CISSP CISM CRISC, Schiphol University Principle 118: Actionable Signal Doctrine™ — Metric Discipline doctrine. Professor Kieran Upadrasta, CISSP CISM CRISC, Schiphol University. https://kieranupadrasta.com/principle-cards/principle_119.html https://kieranupadrasta.com/principle-cards/principle_119.png Principle 119: False Comfort Doctrine™ | Professor Kieran Upadrasta, CISSP CISM CRISC, Schiphol University Principle 119: False Comfort Doctrine™ — Cyber Insurance doctrine. Professor Kieran Upadrasta, CISSP CISM CRISC, Schiphol University. https://kieranupadrasta.com/principle-cards/principle_120.html https://kieranupadrasta.com/principle-cards/principle_120.png Principle 120: Reality Check Doctrine™ | Professor Kieran Upadrasta, CISSP CISM CRISC, Schiphol University Principle 120: Reality Check Doctrine™ — Crisis Simulation doctrine. Professor Kieran Upadrasta, CISSP CISM CRISC, Schiphol University. https://kieranupadrasta.com/principle-cards/principle_121.html https://kieranupadrasta.com/principle-cards/principle_121.png Principle 121: Canary Doctrine™ | Professor Kieran Upadrasta, CISSP CISM CRISC, Schiphol University Principle 121: Canary Doctrine™ — Safe Reporting doctrine. Professor Kieran Upadrasta, CISSP CISM CRISC, Schiphol University. https://kieranupadrasta.com/principle-cards/principle_122.html https://kieranupadrasta.com/principle-cards/principle_122.png Principle 122: Hidden Chain Doctrine™ | Professor Kieran Upadrasta, CISSP CISM CRISC, Schiphol University Principle 122: Hidden Chain Doctrine™ — Supply Chain doctrine. Professor Kieran Upadrasta, CISSP CISM CRISC, Schiphol University. https://kieranupadrasta.com/principle-cards/principle_123.html https://kieranupadrasta.com/principle-cards/principle_123.png Principle 123: Single-Point Doctrine™ | Professor Kieran Upadrasta, CISSP CISM CRISC, Schiphol University Principle 123: Single-Point Doctrine™ — Cloud Concentration doctrine. Professor Kieran Upadrasta, CISSP CISM CRISC, Schiphol University. https://kieranupadrasta.com/principle-cards/principle_124.html https://kieranupadrasta.com/principle-cards/principle_124.png Principle 124: Right-to-Audit Reality™ | Professor Kieran Upadrasta, CISSP CISM CRISC, Schiphol University Principle 124: Right-to-Audit Reality™ — Audit Rights doctrine. Professor Kieran Upadrasta, CISSP CISM CRISC, Schiphol University. https://kieranupadrasta.com/principle-cards/principle_125.html https://kieranupadrasta.com/principle-cards/principle_125.png Principle 125: Trojan Horse Doctrine™ | Professor Kieran Upadrasta, CISSP CISM CRISC, Schiphol University Principle 125: Trojan Horse Doctrine™ — Vendor Onboarding doctrine. Professor Kieran Upadrasta, CISSP CISM CRISC, Schiphol University. https://kieranupadrasta.com/principle-cards/principle_126.html https://kieranupadrasta.com/principle-cards/principle_126.png Principle 126: Unpaid Maintainer Doctrine™ | Professor Kieran Upadrasta, CISSP CISM CRISC, Schiphol University Principle 126: Unpaid Maintainer Doctrine™ — Open-Source Stewardship doctrine. Professor Kieran Upadrasta, CISSP CISM CRISC, Schiphol University. https://kieranupadrasta.com/principle-cards/principle_127.html https://kieranupadrasta.com/principle-cards/principle_127.png Principle 127: Data Fragmentation Doctrine™ | Professor Kieran Upadrasta, CISSP CISM CRISC, Schiphol University Principle 127: Data Fragmentation Doctrine™ — SaaS Sprawl doctrine. Professor Kieran Upadrasta, CISSP CISM CRISC, Schiphol University. https://kieranupadrasta.com/principle-cards/principle_128.html https://kieranupadrasta.com/principle-cards/principle_128.png Principle 128: Forgotten Door Doctrine™ | Professor Kieran Upadrasta, CISSP CISM CRISC, Schiphol University Principle 128: Forgotten Door Doctrine™ — API Perimeter doctrine. Professor Kieran Upadrasta, CISSP CISM CRISC, Schiphol University. https://kieranupadrasta.com/principle-cards/principle_129.html https://kieranupadrasta.com/principle-cards/principle_129.png Principle 129: Cascading Impact Doctrine™ | Professor Kieran Upadrasta, CISSP CISM CRISC, Schiphol University Principle 129: Cascading Impact Doctrine™ — Vendor Ransomware doctrine. Professor Kieran Upadrasta, CISSP CISM CRISC, Schiphol University. https://kieranupadrasta.com/principle-cards/principle_130.html https://kieranupadrasta.com/principle-cards/principle_130.png Principle 130: Continuity Illusion Doctrine™ | Professor Kieran Upadrasta, CISSP CISM CRISC, Schiphol University Principle 130: Continuity Illusion Doctrine™ — Source Escrow doctrine. Professor Kieran Upadrasta, CISSP CISM CRISC, Schiphol University. https://kieranupadrasta.com/principle-cards/principle_131.html https://kieranupadrasta.com/principle-cards/principle_131.png Principle 131: Lingering Ghost Doctrine™ | Professor Kieran Upadrasta, CISSP CISM CRISC, Schiphol University Principle 131: Lingering Ghost Doctrine™ — Vendor Offboarding doctrine. Professor Kieran Upadrasta, CISSP CISM CRISC, Schiphol University. https://kieranupadrasta.com/principle-cards/principle_132.html https://kieranupadrasta.com/principle-cards/principle_132.png Principle 132: Resilience Shift Doctrine™ | Professor Kieran Upadrasta, CISSP CISM CRISC, Schiphol University Principle 132: Resilience Shift Doctrine™ — DORA doctrine. Professor Kieran Upadrasta, CISSP CISM CRISC, Schiphol University. https://kieranupadrasta.com/principle-cards/principle_133.html https://kieranupadrasta.com/principle-cards/principle_133.png Principle 133: Essential Entity Doctrine™ | Professor Kieran Upadrasta, CISSP CISM CRISC, Schiphol University Principle 133: Essential Entity Doctrine™ — NIS2 Essential doctrine. Professor Kieran Upadrasta, CISSP CISM CRISC, Schiphol University. https://kieranupadrasta.com/principle-cards/principle_134.html https://kieranupadrasta.com/principle-cards/principle_134.png Principle 134: 24-Hour Squeeze Doctrine™ | Professor Kieran Upadrasta, CISSP CISM CRISC, Schiphol University Principle 134: 24-Hour Squeeze Doctrine™ — Notification Window doctrine. Professor Kieran Upadrasta, CISSP CISM CRISC, Schiphol University. https://kieranupadrasta.com/principle-cards/principle_135.html https://kieranupadrasta.com/principle-cards/principle_135.png Principle 135: Sovereign Perimeter Doctrine™ | Professor Kieran Upadrasta, CISSP CISM CRISC, Schiphol University Principle 135: Sovereign Perimeter Doctrine™ — Data Sovereignty doctrine. Professor Kieran Upadrasta, CISSP CISM CRISC, Schiphol University. https://kieranupadrasta.com/principle-cards/principle_136.html https://kieranupadrasta.com/principle-cards/principle_136.png Principle 136: Cryptographic Proof Doctrine™ | Professor Kieran Upadrasta, CISSP CISM CRISC, Schiphol University Principle 136: Cryptographic Proof Doctrine™ — Evidence Chain doctrine. Professor Kieran Upadrasta, CISSP CISM CRISC, Schiphol University. https://kieranupadrasta.com/principle-cards/principle_137.html https://kieranupadrasta.com/principle-cards/principle_137.png Principle 137: Revenue Impact Doctrine™ | Professor Kieran Upadrasta, CISSP CISM CRISC, Schiphol University Principle 137: Revenue Impact Doctrine™ — Revenue Fine doctrine. Professor Kieran Upadrasta, CISSP CISM CRISC, Schiphol University. https://kieranupadrasta.com/principle-cards/principle_138.html https://kieranupadrasta.com/principle-cards/principle_138.png Principle 138: Personal Exposure Doctrine™ | Professor Kieran Upadrasta, CISSP CISM CRISC, Schiphol University Principle 138: Personal Exposure Doctrine™ — Executive Liability doctrine. Professor Kieran Upadrasta, CISSP CISM CRISC, Schiphol University. https://kieranupadrasta.com/principle-cards/principle_139.html https://kieranupadrasta.com/principle-cards/principle_139.png Principle 139: First-Hour Classification™ | Professor Kieran Upadrasta, CISSP CISM CRISC, Schiphol University Principle 139: First-Hour Classification™ — Incident Classification doctrine. Professor Kieran Upadrasta, CISSP CISM CRISC, Schiphol University. https://kieranupadrasta.com/principle-cards/principle_140.html https://kieranupadrasta.com/principle-cards/principle_140.png Principle 140: Interlocking Rules Doctrine™ | Professor Kieran Upadrasta, CISSP CISM CRISC, Schiphol University Principle 140: Interlocking Rules Doctrine™ — Regulatory Coherence doctrine. Professor Kieran Upadrasta, CISSP CISM CRISC, Schiphol University. https://kieranupadrasta.com/principle-cards/principle_141.html https://kieranupadrasta.com/principle-cards/principle_141.png Principle 141: Strictest-Regime Doctrine™ | Professor Kieran Upadrasta, CISSP CISM CRISC, Schiphol University Principle 141: Strictest-Regime Doctrine™ — Strictest Regime doctrine. Professor Kieran Upadrasta, CISSP CISM CRISC, Schiphol University. https://kieranupadrasta.com/principle-cards/principle_142.html https://kieranupadrasta.com/principle-cards/principle_142.png Principle 142: Baseline Survival Doctrine™ | Professor Kieran Upadrasta, CISSP CISM CRISC, Schiphol University Principle 142: Baseline Survival Doctrine™ — Recoverability doctrine. Professor Kieran Upadrasta, CISSP CISM CRISC, Schiphol University. https://kieranupadrasta.com/principle-cards/principle_143.html https://kieranupadrasta.com/principle-cards/principle_143.png Principle 143: Last-Line Doctrine™ | Professor Kieran Upadrasta, CISSP CISM CRISC, Schiphol University Principle 143: Last-Line Doctrine™ — Backup Isolation doctrine. Professor Kieran Upadrasta, CISSP CISM CRISC, Schiphol University. https://kieranupadrasta.com/principle-cards/principle_144.html https://kieranupadrasta.com/principle-cards/principle_144.png Principle 144: Scorched-Earth Doctrine™ | Professor Kieran Upadrasta, CISSP CISM CRISC, Schiphol University Principle 144: Scorched-Earth Doctrine™ — Destructive Attack doctrine. Professor Kieran Upadrasta, CISSP CISM CRISC, Schiphol University. https://kieranupadrasta.com/principle-cards/principle_145.html https://kieranupadrasta.com/principle-cards/principle_145.png Principle 145: Operational Truth Doctrine™ | Professor Kieran Upadrasta, CISSP CISM CRISC, Schiphol University Principle 145: Operational Truth Doctrine™ — Recovery Testing doctrine. Professor Kieran Upadrasta, CISSP CISM CRISC, Schiphol University. https://kieranupadrasta.com/principle-cards/principle_146.html https://kieranupadrasta.com/principle-cards/principle_146.png Principle 146: Physical Chasm Doctrine™ | Professor Kieran Upadrasta, CISSP CISM CRISC, Schiphol University Principle 146: Physical Chasm Doctrine™ — True Air Gap doctrine. Professor Kieran Upadrasta, CISSP CISM CRISC, Schiphol University. https://kieranupadrasta.com/principle-cards/principle_147.html https://kieranupadrasta.com/principle-cards/principle_147.png Principle 147: Monday-Morning Doctrine™ | Professor Kieran Upadrasta, CISSP CISM CRISC, Schiphol University Principle 147: Monday-Morning Doctrine™ — Failover Truth doctrine. Professor Kieran Upadrasta, CISSP CISM CRISC, Schiphol University. https://kieranupadrasta.com/principle-cards/principle_148.html https://kieranupadrasta.com/principle-cards/principle_148.png Principle 148: Graceful Degradation Doctrine™ | Professor Kieran Upadrasta, CISSP CISM CRISC, Schiphol University Principle 148: Graceful Degradation Doctrine™ — Graceful Failure doctrine. Professor Kieran Upadrasta, CISSP CISM CRISC, Schiphol University. https://kieranupadrasta.com/principle-cards/principle_149.html https://kieranupadrasta.com/principle-cards/principle_149.png Principle 149: Mirrored Flaw Doctrine™ | Professor Kieran Upadrasta, CISSP CISM CRISC, Schiphol University Principle 149: Mirrored Flaw Doctrine™ — Mirrored Production doctrine. Professor Kieran Upadrasta, CISSP CISM CRISC, Schiphol University. https://kieranupadrasta.com/principle-cards/principle_150.html https://kieranupadrasta.com/principle-cards/principle_150.png Principle 150: Unknown Dependency Doctrine™ | Professor Kieran Upadrasta, CISSP CISM CRISC, Schiphol University Principle 150: Unknown Dependency Doctrine™ — Dependency Mapping doctrine. Professor Kieran Upadrasta, CISSP CISM CRISC, Schiphol University. https://kieranupadrasta.com/principle-cards/principle_151.html https://kieranupadrasta.com/principle-cards/principle_151.png Principle 151: Unreachable Archive Doctrine™ | Professor Kieran Upadrasta, CISSP CISM CRISC, Schiphol University Principle 151: Unreachable Archive Doctrine™ — Cyber Vault doctrine. Professor Kieran Upadrasta, CISSP CISM CRISC, Schiphol University. https://kieranupadrasta.com/principle-cards/principle_152.html https://kieranupadrasta.com/principle-cards/principle_152.png Principle 152: Default Stance Doctrine™ | Professor Kieran Upadrasta, CISSP CISM CRISC, Schiphol University Principle 152: Default Stance Doctrine™ — Zero Trust Default doctrine. Professor Kieran Upadrasta, CISSP CISM CRISC, Schiphol University. https://kieranupadrasta.com/principle-cards/principle_153.html https://kieranupadrasta.com/principle-cards/principle_153.png Principle 153: Shifting Boundary Doctrine™ | Professor Kieran Upadrasta, CISSP CISM CRISC, Schiphol University Principle 153: Shifting Boundary Doctrine™ — Perimeter Identity doctrine. Professor Kieran Upadrasta, CISSP CISM CRISC, Schiphol University. https://kieranupadrasta.com/principle-cards/principle_154.html https://kieranupadrasta.com/principle-cards/principle_154.png Principle 154: Human Limit Doctrine™ | Professor Kieran Upadrasta, CISSP CISM CRISC, Schiphol University Principle 154: Human Limit Doctrine™ — MFA Fatigue doctrine. Professor Kieran Upadrasta, CISSP CISM CRISC, Schiphol University. https://kieranupadrasta.com/principle-cards/principle_155.html https://kieranupadrasta.com/principle-cards/principle_155.png Principle 155: Silent Majority Doctrine™ | Professor Kieran Upadrasta, CISSP CISM CRISC, Schiphol University Principle 155: Silent Majority Doctrine™ — Non-Human Identity doctrine. Professor Kieran Upadrasta, CISSP CISM CRISC, Schiphol University. https://kieranupadrasta.com/principle-cards/principle_156.html https://kieranupadrasta.com/principle-cards/principle_156.png Principle 156: Janitor's Keys Doctrine™ | Professor Kieran Upadrasta, CISSP CISM CRISC, Schiphol University Principle 156: Janitor's Keys Doctrine™ — Lateral Movement doctrine. Professor Kieran Upadrasta, CISSP CISM CRISC, Schiphol University. https://kieranupadrasta.com/principle-cards/principle_157.html https://kieranupadrasta.com/principle-cards/principle_157.png Principle 157: Active Session Doctrine™ | Professor Kieran Upadrasta, CISSP CISM CRISC, Schiphol University Principle 157: Active Session Doctrine™ — Continuous Auth doctrine. Professor Kieran Upadrasta, CISSP CISM CRISC, Schiphol University. https://kieranupadrasta.com/principle-cards/principle_158.html https://kieranupadrasta.com/principle-cards/principle_158.png Principle 158: Orphaned Access Doctrine™ | Professor Kieran Upadrasta, CISSP CISM CRISC, Schiphol University Principle 158: Orphaned Access Doctrine™ — Leaver Process doctrine. Professor Kieran Upadrasta, CISSP CISM CRISC, Schiphol University. https://kieranupadrasta.com/principle-cards/principle_159.html https://kieranupadrasta.com/principle-cards/principle_159.png Principle 159: Ephemeral Key Doctrine™ | Professor Kieran Upadrasta, CISSP CISM CRISC, Schiphol University Principle 159: Ephemeral Key Doctrine™ — JIT Privilege doctrine. Professor Kieran Upadrasta, CISSP CISM CRISC, Schiphol University. https://kieranupadrasta.com/principle-cards/principle_160.html https://kieranupadrasta.com/principle-cards/principle_160.png Principle 160: Deepfake Threat Doctrine™ | Professor Kieran Upadrasta, CISSP CISM CRISC, Schiphol University Principle 160: Deepfake Threat Doctrine™ — Biometric Spoof doctrine. Professor Kieran Upadrasta, CISSP CISM CRISC, Schiphol University. https://kieranupadrasta.com/principle-cards/principle_161.html https://kieranupadrasta.com/principle-cards/principle_161.png Principle 161: Phishing-Starvation Doctrine™ | Professor Kieran Upadrasta, CISSP CISM CRISC, Schiphol University Principle 161: Phishing-Starvation Doctrine™ — Passwordless doctrine. Professor Kieran Upadrasta, CISSP CISM CRISC, Schiphol University. https://kieranupadrasta.com/principle-cards/principle_162.html https://kieranupadrasta.com/principle-cards/principle_162.png Principle 162: Fog-of-War Doctrine™ | Professor Kieran Upadrasta, CISSP CISM CRISC, Schiphol University Principle 162: Fog-of-War Doctrine™ — First Hour doctrine. Professor Kieran Upadrasta, CISSP CISM CRISC, Schiphol University. https://kieranupadrasta.com/principle-cards/principle_163.html https://kieranupadrasta.com/principle-cards/principle_163.png Principle 163: Secure Channel Doctrine™ | Professor Kieran Upadrasta, CISSP CISM CRISC, Schiphol University Principle 163: Secure Channel Doctrine™ — Out-of-Band Comms doctrine. Professor Kieran Upadrasta, CISSP CISM CRISC, Schiphol University. https://kieranupadrasta.com/principle-cards/principle_164.html https://kieranupadrasta.com/principle-cards/principle_164.png Principle 164: Truth Deficit Doctrine™ | Professor Kieran Upadrasta, CISSP CISM CRISC, Schiphol University Principle 164: Truth Deficit Doctrine™ — Denial Discipline doctrine. Professor Kieran Upadrasta, CISSP CISM CRISC, Schiphol University. https://kieranupadrasta.com/principle-cards/principle_165.html https://kieranupadrasta.com/principle-cards/principle_165.png Principle 165: Morality Play Doctrine™ | Professor Kieran Upadrasta, CISSP CISM CRISC, Schiphol University Principle 165: Morality Play Doctrine™ — Ransom Ethics doctrine. Professor Kieran Upadrasta, CISSP CISM CRISC, Schiphol University. https://kieranupadrasta.com/principle-cards/principle_166.html https://kieranupadrasta.com/principle-cards/principle_166.png Principle 166: Silent Partner Doctrine™ | Professor Kieran Upadrasta, CISSP CISM CRISC, Schiphol University Principle 166: Silent Partner Doctrine™ — LE Coordination doctrine. Professor Kieran Upadrasta, CISSP CISM CRISC, Schiphol University. https://kieranupadrasta.com/principle-cards/principle_167.html https://kieranupadrasta.com/principle-cards/principle_167.png Principle 167: Contaminated Scene Doctrine™ | Professor Kieran Upadrasta, CISSP CISM CRISC, Schiphol University Principle 167: Contaminated Scene Doctrine™ — Forensic Integrity doctrine. Professor Kieran Upadrasta, CISSP CISM CRISC, Schiphol University. https://kieranupadrasta.com/principle-cards/principle_168.html https://kieranupadrasta.com/principle-cards/principle_168.png Principle 168: Double-Edged Doctrine™ | Professor Kieran Upadrasta, CISSP CISM CRISC, Schiphol University Principle 168: Double-Edged Doctrine™ — Legal Privilege doctrine. Professor Kieran Upadrasta, CISSP CISM CRISC, Schiphol University. https://kieranupadrasta.com/principle-cards/principle_169.html https://kieranupadrasta.com/principle-cards/principle_169.png Principle 169: Double-Dip Doctrine™ | Professor Kieran Upadrasta, CISSP CISM CRISC, Schiphol University Principle 169: Double-Dip Doctrine™ — Exfil Recovery doctrine. Professor Kieran Upadrasta, CISSP CISM CRISC, Schiphol University. https://kieranupadrasta.com/principle-cards/principle_170.html https://kieranupadrasta.com/principle-cards/principle_170.png Principle 170: Victim-Blaming Doctrine™ | Professor Kieran Upadrasta, CISSP CISM CRISC, Schiphol University Principle 170: Victim-Blaming Doctrine™ — Post-Breach doctrine. Professor Kieran Upadrasta, CISSP CISM CRISC, Schiphol University. https://kieranupadrasta.com/principle-cards/principle_171.html https://kieranupadrasta.com/principle-cards/principle_171.png Principle 171: True-Cost Doctrine™ | Professor Kieran Upadrasta, CISSP CISM CRISC, Schiphol University Principle 171: True-Cost Doctrine™ — Lessons Learned doctrine. Professor Kieran Upadrasta, CISSP CISM CRISC, Schiphol University. https://kieranupadrasta.com/principle-cards/principle_172.html https://kieranupadrasta.com/principle-cards/principle_172.png Principle 172: Global Exposure Doctrine™ | Professor Kieran Upadrasta, CISSP CISM CRISC, Schiphol University Principle 172: Global Exposure Doctrine™ — Cloud Exposure doctrine. Professor Kieran Upadrasta, CISSP CISM CRISC, Schiphol University. https://kieranupadrasta.com/principle-cards/principle_173.html https://kieranupadrasta.com/principle-cards/principle_173.png Principle 173: Amplified Risk Doctrine™ | Professor Kieran Upadrasta, CISSP CISM CRISC, Schiphol University Principle 173: Amplified Risk Doctrine™ — Multi-Cloud Risk doctrine. Professor Kieran Upadrasta, CISSP CISM CRISC, Schiphol University. https://kieranupadrasta.com/principle-cards/principle_174.html https://kieranupadrasta.com/principle-cards/principle_174.png Principle 174: Data Border Doctrine™ | Professor Kieran Upadrasta, CISSP CISM CRISC, Schiphol University Principle 174: Data Border Doctrine™ — Geopolitical Data doctrine. Professor Kieran Upadrasta, CISSP CISM CRISC, Schiphol University. https://kieranupadrasta.com/principle-cards/principle_175.html https://kieranupadrasta.com/principle-cards/principle_175.png Principle 175: Air-Gap Myth Doctrine™ | Professor Kieran Upadrasta, CISSP CISM CRISC, Schiphol University Principle 175: Air-Gap Myth Doctrine™ — OT/IT Convergence doctrine. Professor Kieran Upadrasta, CISSP CISM CRISC, Schiphol University. https://kieranupadrasta.com/principle-cards/principle_176.html https://kieranupadrasta.com/principle-cards/principle_176.png Principle 176: Technical Debt Bomb™ | Professor Kieran Upadrasta, CISSP CISM CRISC, Schiphol University Principle 176: Technical Debt Bomb™ — Legacy Systems doctrine. Professor Kieran Upadrasta, CISSP CISM CRISC, Schiphol University. https://kieranupadrasta.com/principle-cards/principle_177.html https://kieranupadrasta.com/principle-cards/principle_177.png Principle 177: Scalable Flaw Doctrine™ | Professor Kieran Upadrasta, CISSP CISM CRISC, Schiphol University Principle 177: Scalable Flaw Doctrine™ — IaC Misconfig doctrine. Professor Kieran Upadrasta, CISSP CISM CRISC, Schiphol University. https://kieranupadrasta.com/principle-cards/principle_178.html https://kieranupadrasta.com/principle-cards/principle_178.png Principle 178: Untethered Device Doctrine™ | Professor Kieran Upadrasta, CISSP CISM CRISC, Schiphol University Principle 178: Untethered Device Doctrine™ — Edge Device doctrine. Professor Kieran Upadrasta, CISSP CISM CRISC, Schiphol University. https://kieranupadrasta.com/principle-cards/principle_179.html https://kieranupadrasta.com/principle-cards/principle_179.png Principle 179: Hidden Payload Doctrine™ | Professor Kieran Upadrasta, CISSP CISM CRISC, Schiphol University Principle 179: Hidden Payload Doctrine™ — Container Supply doctrine. Professor Kieran Upadrasta, CISSP CISM CRISC, Schiphol University. https://kieranupadrasta.com/principle-cards/principle_180.html https://kieranupadrasta.com/principle-cards/principle_180.png Principle 180: Silent Drain Doctrine™ | Professor Kieran Upadrasta, CISSP CISM CRISC, Schiphol University Principle 180: Silent Drain Doctrine™ — Cryptojacking doctrine. Professor Kieran Upadrasta, CISSP CISM CRISC, Schiphol University. https://kieranupadrasta.com/principle-cards/principle_181.html https://kieranupadrasta.com/principle-cards/principle_181.png Principle 181: Abdication Doctrine™ | Professor Kieran Upadrasta, CISSP CISM CRISC, Schiphol University Principle 181: Abdication Doctrine™ — Shared Responsibility doctrine. Professor Kieran Upadrasta, CISSP CISM CRISC, Schiphol University. https://kieranupadrasta.com/principle-cards/principle_182.html https://kieranupadrasta.com/principle-cards/principle_182.png Principle 182: Harvest-Now Doctrine™ | Professor Kieran Upadrasta, CISSP CISM CRISC, Schiphol University Principle 182: Harvest-Now Doctrine™ — PQC Harvest doctrine. Professor Kieran Upadrasta, CISSP CISM CRISC, Schiphol University. https://kieranupadrasta.com/principle-cards/principle_183.html https://kieranupadrasta.com/principle-cards/principle_183.png Principle 183: Seamless Swap Doctrine™ | Professor Kieran Upadrasta, CISSP CISM CRISC, Schiphol University Principle 183: Seamless Swap Doctrine™ — Crypto Agility doctrine. Professor Kieran Upadrasta, CISSP CISM CRISC, Schiphol University. https://kieranupadrasta.com/principle-cards/principle_184.html https://kieranupadrasta.com/principle-cards/principle_184.png Principle 184: Digital Trust Rebuild™ | Professor Kieran Upadrasta, CISSP CISM CRISC, Schiphol University Principle 184: Digital Trust Rebuild™ — PQC Rebuild doctrine. Professor Kieran Upadrasta, CISSP CISM CRISC, Schiphol University. https://kieranupadrasta.com/principle-cards/principle_185.html https://kieranupadrasta.com/principle-cards/principle_185.png Principle 185: Market Manipulation Doctrine™ | Professor Kieran Upadrasta, CISSP CISM CRISC, Schiphol University Principle 185: Market Manipulation Doctrine™ — Deepfake Markets doctrine. Professor Kieran Upadrasta, CISSP CISM CRISC, Schiphol University. https://kieranupadrasta.com/principle-cards/principle_186.html https://kieranupadrasta.com/principle-cards/principle_186.png Principle 186: Orbital Attack Surface™ | Professor Kieran Upadrasta, CISSP CISM CRISC, Schiphol University Principle 186: Orbital Attack Surface™ — Space Systems doctrine. Professor Kieran Upadrasta, CISSP CISM CRISC, Schiphol University. https://kieranupadrasta.com/principle-cards/principle_187.html https://kieranupadrasta.com/principle-cards/principle_187.png Principle 187: Drone-Strike Doctrine™ | Professor Kieran Upadrasta, CISSP CISM CRISC, Schiphol University Principle 187: Drone-Strike Doctrine™ — AI Defence doctrine. Professor Kieran Upadrasta, CISSP CISM CRISC, Schiphol University. https://kieranupadrasta.com/principle-cards/principle_188.html https://kieranupadrasta.com/principle-cards/principle_188.png Principle 188: Silicon Threat Doctrine™ | Professor Kieran Upadrasta, CISSP CISM CRISC, Schiphol University Principle 188: Silicon Threat Doctrine™ — Hardware Trust doctrine. Professor Kieran Upadrasta, CISSP CISM CRISC, Schiphol University. https://kieranupadrasta.com/principle-cards/principle_189.html https://kieranupadrasta.com/principle-cards/principle_189.png Principle 189: Perpetual Zero-Day Doctrine™ | Professor Kieran Upadrasta, CISSP CISM CRISC, Schiphol University Principle 189: Perpetual Zero-Day Doctrine™ — Unpatched Known doctrine. Professor Kieran Upadrasta, CISSP CISM CRISC, Schiphol University. https://kieranupadrasta.com/principle-cards/principle_190.html https://kieranupadrasta.com/principle-cards/principle_190.png Principle 190: Unchangeable Secret Doctrine™ | Professor Kieran Upadrasta, CISSP CISM CRISC, Schiphol University Principle 190: Unchangeable Secret Doctrine™ — Biometric Irrevocable doctrine. Professor Kieran Upadrasta, CISSP CISM CRISC, Schiphol University. https://kieranupadrasta.com/principle-cards/principle_191.html https://kieranupadrasta.com/principle-cards/principle_191.png Principle 191: Aging Standard Doctrine™ | Professor Kieran Upadrasta, CISSP CISM CRISC, Schiphol University Principle 191: Aging Standard Doctrine™ — Deprecated Protocols doctrine. Professor Kieran Upadrasta, CISSP CISM CRISC, Schiphol University. https://kieranupadrasta.com/principle-cards/principle_192.html https://kieranupadrasta.com/principle-cards/principle_192.png Principle 192: Value-at-Risk Doctrine™ | Professor Kieran Upadrasta, CISSP CISM CRISC, Schiphol University Principle 192: Value-at-Risk Doctrine™ — Risk Quantification doctrine. Professor Kieran Upadrasta, CISSP CISM CRISC, Schiphol University. https://kieranupadrasta.com/principle-cards/principle_193.html https://kieranupadrasta.com/principle-cards/principle_193.png Principle 193: Security Poverty Line Doctrine™ | Professor Kieran Upadrasta, CISSP CISM CRISC, Schiphol University Principle 193: Security Poverty Line Doctrine™ — SMB Supply Chain doctrine. Professor Kieran Upadrasta, CISSP CISM CRISC, Schiphol University. https://kieranupadrasta.com/principle-cards/principle_194.html https://kieranupadrasta.com/principle-cards/principle_194.png Principle 194: Umbrella-in-Hurricane Doctrine™ | Professor Kieran Upadrasta, CISSP CISM CRISC, Schiphol University Principle 194: Umbrella-in-Hurricane Doctrine™ — War Exclusion doctrine. Professor Kieran Upadrasta, CISSP CISM CRISC, Schiphol University. https://kieranupadrasta.com/principle-cards/principle_195.html https://kieranupadrasta.com/principle-cards/principle_195.png Principle 195: Invisible Return Doctrine™ | Professor Kieran Upadrasta, CISSP CISM CRISC, Schiphol University Principle 195: Invisible Return Doctrine™ — Cyber ROI doctrine. Professor Kieran Upadrasta, CISSP CISM CRISC, Schiphol University. https://kieranupadrasta.com/principle-cards/principle_196.html https://kieranupadrasta.com/principle-cards/principle_196.png Principle 196: First-Line Doctrine™ | Professor Kieran Upadrasta, CISSP CISM CRISC, Schiphol University Principle 196: First-Line Doctrine™ — Secure by Design doctrine. Professor Kieran Upadrasta, CISSP CISM CRISC, Schiphol University. https://kieranupadrasta.com/principle-cards/principle_197.html https://kieranupadrasta.com/principle-cards/principle_197.png Principle 197: Free-Market Vulnerability™ | Professor Kieran Upadrasta, CISSP CISM CRISC, Schiphol University Principle 197: Free-Market Vulnerability™ — Bug Bounty doctrine. Professor Kieran Upadrasta, CISSP CISM CRISC, Schiphol University. https://kieranupadrasta.com/principle-cards/principle_198.html https://kieranupadrasta.com/principle-cards/principle_198.png Principle 198: Burnout Factor Doctrine™ | Professor Kieran Upadrasta, CISSP CISM CRISC, Schiphol University Principle 198: Burnout Factor Doctrine™ — Analyst Burnout doctrine. Professor Kieran Upadrasta, CISSP CISM CRISC, Schiphol University. https://kieranupadrasta.com/principle-cards/principle_199.html https://kieranupadrasta.com/principle-cards/principle_199.png Principle 199: Zero-Day Economy Doctrine™ | Professor Kieran Upadrasta, CISSP CISM CRISC, Schiphol University Principle 199: Zero-Day Economy Doctrine™ — Zero-Day Economy doctrine. Professor Kieran Upadrasta, CISSP CISM CRISC, Schiphol University. https://kieranupadrasta.com/principle-cards/principle_200.html https://kieranupadrasta.com/principle-cards/principle_200.png Principle 200: Attacker Advantage Doctrine™ | Professor Kieran Upadrasta, CISSP CISM CRISC, Schiphol University Principle 200: Attacker Advantage Doctrine™ — Defender Economics doctrine. Professor Kieran Upadrasta, CISSP CISM CRISC, Schiphol University. https://kieranupadrasta.com/principle-cards/principle_201.html https://kieranupadrasta.com/principle-cards/principle_201.png Principle 201: Final Doctrine™ | Professor Kieran Upadrasta, CISSP CISM CRISC, Schiphol University Principle 201: Final Doctrine™ — Institutional Architecture doctrine. Professor Kieran Upadrasta, CISSP CISM CRISC, Schiphol University. https://kieranupadrasta.com/principle-cards/principle_202.html https://kieranupadrasta.com/principle-cards/principle_202.png Principle 202: Sovereign Stack Defensibility | Professor Kieran Upadrasta, CISSP CISM CRISC, Schiphol University Principle 202: Sovereign Stack Defensibility — Sovereign Tech doctrine. Professor Kieran Upadrasta, CISSP CISM CRISC, Schiphol University. https://kieranupadrasta.com/principle-cards/principle_203.html https://kieranupadrasta.com/principle-cards/principle_203.png Principle 203: Reachability Doctrine | Professor Kieran Upadrasta, CISSP CISM CRISC, Schiphol University Principle 203: Reachability Doctrine — Sovereign Tech doctrine. Professor Kieran Upadrasta, CISSP CISM CRISC, Schiphol University. https://kieranupadrasta.com/principle-cards/principle_204.html https://kieranupadrasta.com/principle-cards/principle_204.png Principle 204: Export-Control Surface | Professor Kieran Upadrasta, CISSP CISM CRISC, Schiphol University Principle 204: Export-Control Surface — Geopolitics doctrine. Professor Kieran Upadrasta, CISSP CISM CRISC, Schiphol University. https://kieranupadrasta.com/principle-cards/principle_205.html https://kieranupadrasta.com/principle-cards/principle_205.png Principle 205: Coercion Cartography | Professor Kieran Upadrasta, CISSP CISM CRISC, Schiphol University Principle 205: Coercion Cartography — Geopolitics doctrine. Professor Kieran Upadrasta, CISSP CISM CRISC, Schiphol University. https://kieranupadrasta.com/principle-cards/principle_206.html https://kieranupadrasta.com/principle-cards/principle_206.png Principle 206: Secondary-Sanctions Posture | Professor Kieran Upadrasta, CISSP CISM CRISC, Schiphol University Principle 206: Secondary-Sanctions Posture — Sanctions doctrine. Professor Kieran Upadrasta, CISSP CISM CRISC, Schiphol University. https://kieranupadrasta.com/principle-cards/principle_207.html https://kieranupadrasta.com/principle-cards/principle_207.png Principle 207: GPAI Tier Discipline | Professor Kieran Upadrasta, CISSP CISM CRISC, Schiphol University Principle 207: GPAI Tier Discipline — AI Act Enforcement doctrine. Professor Kieran Upadrasta, CISSP CISM CRISC, Schiphol University. https://kieranupadrasta.com/principle-cards/principle_208.html https://kieranupadrasta.com/principle-cards/principle_208.png Principle 208: Substantial Modification Threshold | Professor Kieran Upadrasta, CISSP CISM CRISC, Schiphol University Principle 208: Substantial Modification Threshold — AI Act Enforcement doctrine. Professor Kieran Upadrasta, CISSP CISM CRISC, Schiphol University. https://kieranupadrasta.com/principle-cards/principle_209.html https://kieranupadrasta.com/principle-cards/principle_209.png Principle 209: Agent Autonomy Ceiling | Professor Kieran Upadrasta, CISSP CISM CRISC, Schiphol University Principle 209: Agent Autonomy Ceiling — Agentic AI Control doctrine. Professor Kieran Upadrasta, CISSP CISM CRISC, Schiphol University. https://kieranupadrasta.com/principle-cards/principle_210.html https://kieranupadrasta.com/principle-cards/principle_210.png Principle 210: Model Recall Discipline | Professor Kieran Upadrasta, CISSP CISM CRISC, Schiphol University Principle 210: Model Recall Discipline — AI Incident Response doctrine. Professor Kieran Upadrasta, CISSP CISM CRISC, Schiphol University. https://kieranupadrasta.com/principle-cards/principle_211.html https://kieranupadrasta.com/principle-cards/principle_211.png Principle 211: Right to Human Review | Professor Kieran Upadrasta, CISSP CISM CRISC, Schiphol University Principle 211: Right to Human Review — AI Redress doctrine. Professor Kieran Upadrasta, CISSP CISM CRISC, Schiphol University. https://kieranupadrasta.com/principle-cards/principle_212.html https://kieranupadrasta.com/principle-cards/principle_212.png Principle 212: Provenance-or-Penalty Principle | Professor Kieran Upadrasta, CISSP CISM CRISC, Schiphol University Principle 212: Provenance-or-Penalty Principle — AI Training Data doctrine. Professor Kieran Upadrasta, CISSP CISM CRISC, Schiphol University. https://kieranupadrasta.com/principle-cards/principle_213.html https://kieranupadrasta.com/principle-cards/principle_213.png Principle 213: Vector Database Trust Boundary | Professor Kieran Upadrasta, CISSP CISM CRISC, Schiphol University Principle 213: Vector Database Trust Boundary — AI Supply Chain doctrine. Professor Kieran Upadrasta, CISSP CISM CRISC, Schiphol University. https://kieranupadrasta.com/principle-cards/principle_214.html https://kieranupadrasta.com/principle-cards/principle_214.png Principle 214: Eval-as-Control | Professor Kieran Upadrasta, CISSP CISM CRISC, Schiphol University Principle 214: Eval-as-Control — AI Evaluation doctrine. Professor Kieran Upadrasta, CISSP CISM CRISC, Schiphol University. https://kieranupadrasta.com/principle-cards/principle_215.html https://kieranupadrasta.com/principle-cards/principle_215.png Principle 215: BYOAI Doctrine | Professor Kieran Upadrasta, CISSP CISM CRISC, Schiphol University Principle 215: BYOAI Doctrine — Shadow AI doctrine. Professor Kieran Upadrasta, CISSP CISM CRISC, Schiphol University. https://kieranupadrasta.com/principle-cards/principle_216.html https://kieranupadrasta.com/principle-cards/principle_216.png Principle 216: Prompt-as-Exfiltration-Surface | Professor Kieran Upadrasta, CISSP CISM CRISC, Schiphol University Principle 216: Prompt-as-Exfiltration-Surface — GenAI Leakage doctrine. Professor Kieran Upadrasta, CISSP CISM CRISC, Schiphol University. https://kieranupadrasta.com/principle-cards/principle_217.html https://kieranupadrasta.com/principle-cards/principle_217.png Principle 217: Authentic-or-Accountable Principle | Professor Kieran Upadrasta, CISSP CISM CRISC, Schiphol University Principle 217: Authentic-or-Accountable Principle — AI Watermarking doctrine. Professor Kieran Upadrasta, CISSP CISM CRISC, Schiphol University. https://kieranupadrasta.com/principle-cards/principle_218.html https://kieranupadrasta.com/principle-cards/principle_218.png Principle 218: Harvest-Now Decrypt-Later Inventory | Professor Kieran Upadrasta, CISSP CISM CRISC, Schiphol University Principle 218: Harvest-Now Decrypt-Later Inventory — Post-Quantum Migration doctrine. Professor Kieran Upadrasta, CISSP CISM CRISC, Schiphol University. https://kieranupadrasta.com/principle-cards/principle_219.html https://kieranupadrasta.com/principle-cards/principle_219.png Principle 219: Cipher-Suite Reversibility Doctrine | Professor Kieran Upadrasta, CISSP CISM CRISC, Schiphol University Principle 219: Cipher-Suite Reversibility Doctrine — Cryptographic Agility doctrine. Professor Kieran Upadrasta, CISSP CISM CRISC, Schiphol University. https://kieranupadrasta.com/principle-cards/principle_220.html https://kieranupadrasta.com/principle-cards/principle_220.png Principle 220: Hybrid-Mode Inheritance | Professor Kieran Upadrasta, CISSP CISM CRISC, Schiphol University Principle 220: Hybrid-Mode Inheritance — PQC Suppliers doctrine. Professor Kieran Upadrasta, CISSP CISM CRISC, Schiphol University. https://kieranupadrasta.com/principle-cards/principle_221.html https://kieranupadrasta.com/principle-cards/principle_221.png Principle 221: Service-Account Sprawl | Professor Kieran Upadrasta, CISSP CISM CRISC, Schiphol University Principle 221: Service-Account Sprawl — Non-Human Identity doctrine. Professor Kieran Upadrasta, CISSP CISM CRISC, Schiphol University. https://kieranupadrasta.com/principle-cards/principle_222.html https://kieranupadrasta.com/principle-cards/principle_222.png Principle 222: Trust-Federation Blast Radius | Professor Kieran Upadrasta, CISSP CISM CRISC, Schiphol University Principle 222: Trust-Federation Blast Radius — Identity Federation doctrine. Professor Kieran Upadrasta, CISSP CISM CRISC, Schiphol University. https://kieranupadrasta.com/principle-cards/principle_223.html https://kieranupadrasta.com/principle-cards/principle_223.png Principle 223: Token-Theft Doctrine | Professor Kieran Upadrasta, CISSP CISM CRISC, Schiphol University Principle 223: Token-Theft Doctrine — Session Hijack doctrine. Professor Kieran Upadrasta, CISSP CISM CRISC, Schiphol University. https://kieranupadrasta.com/principle-cards/principle_224.html https://kieranupadrasta.com/principle-cards/principle_224.png Principle 224: Standing-Privilege Abolition | Professor Kieran Upadrasta, CISSP CISM CRISC, Schiphol University Principle 224: Standing-Privilege Abolition — JIT Access doctrine. Professor Kieran Upadrasta, CISSP CISM CRISC, Schiphol University. https://kieranupadrasta.com/principle-cards/principle_225.html https://kieranupadrasta.com/principle-cards/principle_225.png Principle 225: Concentration-of-Common-Mode | Professor Kieran Upadrasta, CISSP CISM CRISC, Schiphol University Principle 225: Concentration-of-Common-Mode — Cascading Failure doctrine. Professor Kieran Upadrasta, CISSP CISM CRISC, Schiphol University. https://kieranupadrasta.com/principle-cards/principle_226.html https://kieranupadrasta.com/principle-cards/principle_226.png Principle 226: Active-Active Authority | Professor Kieran Upadrasta, CISSP CISM CRISC, Schiphol University Principle 226: Active-Active Authority — Multi-Region doctrine. Professor Kieran Upadrasta, CISSP CISM CRISC, Schiphol University. https://kieranupadrasta.com/principle-cards/principle_227.html https://kieranupadrasta.com/principle-cards/principle_227.png Principle 227: Manual-Operating-Mode Continuity | Professor Kieran Upadrasta, CISSP CISM CRISC, Schiphol University Principle 227: Manual-Operating-Mode Continuity — Cyber-Physical doctrine. Professor Kieran Upadrasta, CISSP CISM CRISC, Schiphol University. https://kieranupadrasta.com/principle-cards/principle_228.html https://kieranupadrasta.com/principle-cards/principle_228.png Principle 228: Validated-Recovery Doctrine | Professor Kieran Upadrasta, CISSP CISM CRISC, Schiphol University Principle 228: Validated-Recovery Doctrine — RTO/RPO Discipline doctrine. Professor Kieran Upadrasta, CISSP CISM CRISC, Schiphol University. https://kieranupadrasta.com/principle-cards/principle_229.html https://kieranupadrasta.com/principle-cards/principle_229.png Principle 229: Production-Chaos Mandate | Professor Kieran Upadrasta, CISSP CISM CRISC, Schiphol University Principle 229: Production-Chaos Mandate — Chaos Engineering doctrine. Professor Kieran Upadrasta, CISSP CISM CRISC, Schiphol University. https://kieranupadrasta.com/principle-cards/principle_230.html https://kieranupadrasta.com/principle-cards/principle_230.png Principle 230: RPKI Hygiene | Professor Kieran Upadrasta, CISSP CISM CRISC, Schiphol University Principle 230: RPKI Hygiene — BGP Resilience doctrine. Professor Kieran Upadrasta, CISSP CISM CRISC, Schiphol University. https://kieranupadrasta.com/principle-cards/principle_231.html https://kieranupadrasta.com/principle-cards/principle_231.png Principle 231: DNS Single-Provider Risk | Professor Kieran Upadrasta, CISSP CISM CRISC, Schiphol University Principle 231: DNS Single-Provider Risk — DNS Resilience doctrine. Professor Kieran Upadrasta, CISSP CISM CRISC, Schiphol University. https://kieranupadrasta.com/principle-cards/principle_232.html https://kieranupadrasta.com/principle-cards/principle_232.png Principle 232: Attack-Cost Asymmetry | Professor Kieran Upadrasta, CISSP CISM CRISC, Schiphol University Principle 232: Attack-Cost Asymmetry — DDoS Economics doctrine. Professor Kieran Upadrasta, CISSP CISM CRISC, Schiphol University. https://kieranupadrasta.com/principle-cards/principle_233.html https://kieranupadrasta.com/principle-cards/principle_233.png Principle 233: Fourth-Party Concentration | Professor Kieran Upadrasta, CISSP CISM CRISC, Schiphol University Principle 233: Fourth-Party Concentration — Nth-Party Risk doctrine. Professor Kieran Upadrasta, CISSP CISM CRISC, Schiphol University. https://kieranupadrasta.com/principle-cards/principle_234.html https://kieranupadrasta.com/principle-cards/principle_234.png Principle 234: Runtime SBOM Reconciliation | Professor Kieran Upadrasta, CISSP CISM CRISC, Schiphol University Principle 234: Runtime SBOM Reconciliation — SBOM Runtime doctrine. Professor Kieran Upadrasta, CISSP CISM CRISC, Schiphol University. https://kieranupadrasta.com/principle-cards/principle_235.html https://kieranupadrasta.com/principle-cards/principle_235.png Principle 235: Maintainer-of-One Risk | Professor Kieran Upadrasta, CISSP CISM CRISC, Schiphol University Principle 235: Maintainer-of-One Risk — Open-Source Stewardship doctrine. Professor Kieran Upadrasta, CISSP CISM CRISC, Schiphol University. https://kieranupadrasta.com/principle-cards/principle_236.html https://kieranupadrasta.com/principle-cards/principle_236.png Principle 236: Acquisition-Risk Doctrine | Professor Kieran Upadrasta, CISSP CISM CRISC, Schiphol University Principle 236: Acquisition-Risk Doctrine — Vendor Acquisition doctrine. Professor Kieran Upadrasta, CISSP CISM CRISC, Schiphol University. https://kieranupadrasta.com/principle-cards/principle_237.html https://kieranupadrasta.com/principle-cards/principle_237.png Principle 237: M&A Diligence Doctrine | Professor Kieran Upadrasta, CISSP CISM CRISC, Schiphol University Principle 237: M&A Diligence Doctrine — Cyber Due Diligence doctrine. Professor Kieran Upadrasta, CISSP CISM CRISC, Schiphol University. https://kieranupadrasta.com/principle-cards/principle_238.html https://kieranupadrasta.com/principle-cards/principle_238.png Principle 238: Indemnity-Sized Findings | Professor Kieran Upadrasta, CISSP CISM CRISC, Schiphol University Principle 238: Indemnity-Sized Findings — Closing Conditions doctrine. Professor Kieran Upadrasta, CISSP CISM CRISC, Schiphol University. https://kieranupadrasta.com/principle-cards/principle_239.html https://kieranupadrasta.com/principle-cards/principle_239.png Principle 239: 100-Day Cyber Integration | Professor Kieran Upadrasta, CISSP CISM CRISC, Schiphol University Principle 239: 100-Day Cyber Integration — Integration Window doctrine. Professor Kieran Upadrasta, CISSP CISM CRISC, Schiphol University. https://kieranupadrasta.com/principle-cards/principle_240.html https://kieranupadrasta.com/principle-cards/principle_240.png Principle 240: Clean-Carve Doctrine | Professor Kieran Upadrasta, CISSP CISM CRISC, Schiphol University Principle 240: Clean-Carve Doctrine — Divestiture doctrine. Professor Kieran Upadrasta, CISSP CISM CRISC, Schiphol University. https://kieranupadrasta.com/principle-cards/principle_241.html https://kieranupadrasta.com/principle-cards/principle_241.png Principle 241: Syndicate Drift Risk | Professor Kieran Upadrasta, CISSP CISM CRISC, Schiphol University Principle 241: Syndicate Drift Risk — Insurance Syndicate doctrine. Professor Kieran Upadrasta, CISSP CISM CRISC, Schiphol University. https://kieranupadrasta.com/principle-cards/principle_242.html https://kieranupadrasta.com/principle-cards/principle_242.png Principle 242: Subrogation-Anticipation Drafting | Professor Kieran Upadrasta, CISSP CISM CRISC, Schiphol University Principle 242: Subrogation-Anticipation Drafting — Subrogation doctrine. Professor Kieran Upadrasta, CISSP CISM CRISC, Schiphol University. https://kieranupadrasta.com/principle-cards/principle_243.html https://kieranupadrasta.com/principle-cards/principle_243.png Principle 243: Carrier-Mandated Control Set | Professor Kieran Upadrasta, CISSP CISM CRISC, Schiphol University Principle 243: Carrier-Mandated Control Set — Insurer Leverage doctrine. Professor Kieran Upadrasta, CISSP CISM CRISC, Schiphol University. https://kieranupadrasta.com/principle-cards/principle_244.html https://kieranupadrasta.com/principle-cards/principle_244.png Principle 244: Form 8-K Materiality | Professor Kieran Upadrasta, CISSP CISM CRISC, Schiphol University Principle 244: Form 8-K Materiality — SEC Rule doctrine. Professor Kieran Upadrasta, CISSP CISM CRISC, Schiphol University. https://kieranupadrasta.com/principle-cards/principle_245.html https://kieranupadrasta.com/principle-cards/principle_245.png Principle 245: Director Liability Discipline | Professor Kieran Upadrasta, CISSP CISM CRISC, Schiphol University Principle 245: Director Liability Discipline — NIS2 Liability doctrine. Professor Kieran Upadrasta, CISSP CISM CRISC, Schiphol University. https://kieranupadrasta.com/principle-cards/principle_246.html https://kieranupadrasta.com/principle-cards/principle_246.png Principle 246: Cross-Regulator Triage | Professor Kieran Upadrasta, CISSP CISM CRISC, Schiphol University Principle 246: Cross-Regulator Triage — Regulator Coordination doctrine. Professor Kieran Upadrasta, CISSP CISM CRISC, Schiphol University. https://kieranupadrasta.com/principle-cards/principle_247.html https://kieranupadrasta.com/principle-cards/principle_247.png Principle 247: Press-Release-as-Disclosure | Professor Kieran Upadrasta, CISSP CISM CRISC, Schiphol University Principle 247: Press-Release-as-Disclosure — Crisis Comms doctrine. Professor Kieran Upadrasta, CISSP CISM CRISC, Schiphol University. https://kieranupadrasta.com/principle-cards/principle_248.html https://kieranupadrasta.com/principle-cards/principle_248.png Principle 248: Material Cyber Loss Doctrine | Professor Kieran Upadrasta, CISSP CISM CRISC, Schiphol University Principle 248: Material Cyber Loss Doctrine — Investor Relations doctrine. Professor Kieran Upadrasta, CISSP CISM CRISC, Schiphol University. https://kieranupadrasta.com/principle-cards/principle_249.html https://kieranupadrasta.com/principle-cards/principle_249.png Principle 249: Cyber-Literate Board Discipline | Professor Kieran Upadrasta, CISSP CISM CRISC, Schiphol University Principle 249: Cyber-Literate Board Discipline — Board Fluency doctrine. Professor Kieran Upadrasta, CISSP CISM CRISC, Schiphol University. https://kieranupadrasta.com/principle-cards/principle_250.html https://kieranupadrasta.com/principle-cards/principle_250.png Principle 250: Risk-Committee Charter Update | Professor Kieran Upadrasta, CISSP CISM CRISC, Schiphol University Principle 250: Risk-Committee Charter Update — Committee Charter doctrine. Professor Kieran Upadrasta, CISSP CISM CRISC, Schiphol University. https://kieranupadrasta.com/principle-cards/principle_251.html https://kieranupadrasta.com/principle-cards/principle_251.png Principle 251: Three-Lines Coherence | Professor Kieran Upadrasta, CISSP CISM CRISC, Schiphol University Principle 251: Three-Lines Coherence — Three Lines doctrine. Professor Kieran Upadrasta, CISSP CISM CRISC, Schiphol University. https://kieranupadrasta.com/principle-cards/principle_252.html https://kieranupadrasta.com/principle-cards/principle_252.png Principle 252: C-Suite Crisis Rehearsal | Professor Kieran Upadrasta, CISSP CISM CRISC, Schiphol University Principle 252: C-Suite Crisis Rehearsal — Tabletop Discipline doctrine. Professor Kieran Upadrasta, CISSP CISM CRISC, Schiphol University. https://kieranupadrasta.com/principle-cards/principle_253.html https://kieranupadrasta.com/principle-cards/principle_253.png Principle 253: Audit-Fatigue Reduction | Professor Kieran Upadrasta, CISSP CISM CRISC, Schiphol University Principle 253: Audit-Fatigue Reduction — Control Fatigue doctrine. Professor Kieran Upadrasta, CISSP CISM CRISC, Schiphol University. https://kieranupadrasta.com/principle-cards/principle_254.html https://kieranupadrasta.com/principle-cards/principle_254.png Principle 254: Evidence-Cost Ratio | Professor Kieran Upadrasta, CISSP CISM CRISC, Schiphol University Principle 254: Evidence-Cost Ratio — Evidence Economics doctrine. Professor Kieran Upadrasta, CISSP CISM CRISC, Schiphol University. https://kieranupadrasta.com/principle-cards/principle_255.html https://kieranupadrasta.com/principle-cards/principle_255.png Principle 255: Attestation-as-Code | Professor Kieran Upadrasta, CISSP CISM CRISC, Schiphol University Principle 255: Attestation-as-Code — Continuous Attestation doctrine. Professor Kieran Upadrasta, CISSP CISM CRISC, Schiphol University. https://kieranupadrasta.com/principle-cards/principle_256.html https://kieranupadrasta.com/principle-cards/principle_256.png Principle 256: Security-Debt Amortisation | Professor Kieran Upadrasta, CISSP CISM CRISC, Schiphol University Principle 256: Security-Debt Amortisation — Security Debt doctrine. Professor Kieran Upadrasta, CISSP CISM CRISC, Schiphol University. https://kieranupadrasta.com/principle-cards/principle_257.html https://kieranupadrasta.com/principle-cards/principle_257.png Principle 257: Detection-as-Code | Professor Kieran Upadrasta, CISSP CISM CRISC, Schiphol University Principle 257: Detection-as-Code — Detection Engineering doctrine. Professor Kieran Upadrasta, CISSP CISM CRISC, Schiphol University. https://kieranupadrasta.com/principle-cards/principle_258.html https://kieranupadrasta.com/principle-cards/principle_258.png Principle 258: Log-Retention Discipline | Professor Kieran Upadrasta, CISSP CISM CRISC, Schiphol University Principle 258: Log-Retention Discipline — Telemetry Economics doctrine. Professor Kieran Upadrasta, CISSP CISM CRISC, Schiphol University. https://kieranupadrasta.com/principle-cards/principle_259.html https://kieranupadrasta.com/principle-cards/principle_259.png Principle 259: Observability-as-Witness | Professor Kieran Upadrasta, CISSP CISM CRISC, Schiphol University Principle 259: Observability-as-Witness — Observability Trust doctrine. Professor Kieran Upadrasta, CISSP CISM CRISC, Schiphol University. https://kieranupadrasta.com/principle-cards/principle_260.html https://kieranupadrasta.com/principle-cards/principle_260.png Principle 260: Detection-to-Containment Gap | Professor Kieran Upadrasta, CISSP CISM CRISC, Schiphol University Principle 260: Detection-to-Containment Gap — MTTR Honesty doctrine. Professor Kieran Upadrasta, CISSP CISM CRISC, Schiphol University. https://kieranupadrasta.com/principle-cards/principle_261.html https://kieranupadrasta.com/principle-cards/principle_261.png Principle 261: Immutability-or-Insolvency | Professor Kieran Upadrasta, CISSP CISM CRISC, Schiphol University Principle 261: Immutability-or-Insolvency — Immutable Backups doctrine. Professor Kieran Upadrasta, CISSP CISM CRISC, Schiphol University. https://kieranupadrasta.com/principle-cards/principle_262.html https://kieranupadrasta.com/principle-cards/principle_262.png Principle 262: Restore-Rehearsal Doctrine | Professor Kieran Upadrasta, CISSP CISM CRISC, Schiphol University Principle 262: Restore-Rehearsal Doctrine — Tested Restore doctrine. Professor Kieran Upadrasta, CISSP CISM CRISC, Schiphol University. https://kieranupadrasta.com/principle-cards/principle_263.html https://kieranupadrasta.com/principle-cards/principle_263.png Principle 263: Integrity-as-the-First-CIA | Professor Kieran Upadrasta, CISSP CISM CRISC, Schiphol University Principle 263: Integrity-as-the-First-CIA — Data Integrity doctrine. Professor Kieran Upadrasta, CISSP CISM CRISC, Schiphol University. https://kieranupadrasta.com/principle-cards/principle_264.html https://kieranupadrasta.com/principle-cards/principle_264.png Principle 264: Concentration-Risk in Hiring | Professor Kieran Upadrasta, CISSP CISM CRISC, Schiphol University Principle 264: Concentration-Risk in Hiring — Cyber Talent Market doctrine. Professor Kieran Upadrasta, CISSP CISM CRISC, Schiphol University. https://kieranupadrasta.com/principle-cards/principle_265.html https://kieranupadrasta.com/principle-cards/principle_265.png Principle 265: Operator Sustainability | Professor Kieran Upadrasta, CISSP CISM CRISC, Schiphol University Principle 265: Operator Sustainability — Burnout Doctrine doctrine. Professor Kieran Upadrasta, CISSP CISM CRISC, Schiphol University. https://kieranupadrasta.com/principle-cards/principle_266.html https://kieranupadrasta.com/principle-cards/principle_266.png Principle 266: Distributed Security Function | Professor Kieran Upadrasta, CISSP CISM CRISC, Schiphol University Principle 266: Distributed Security Function — Security Champions doctrine. Professor Kieran Upadrasta, CISSP CISM CRISC, Schiphol University. https://kieranupadrasta.com/principle-cards/principle_267.html https://kieranupadrasta.com/principle-cards/principle_267.png Principle 267: Departure-Risk Window | Professor Kieran Upadrasta, CISSP CISM CRISC, Schiphol University Principle 267: Departure-Risk Window — Insider Risk doctrine. Professor Kieran Upadrasta, CISSP CISM CRISC, Schiphol University. https://kieranupadrasta.com/principle-cards/principle_268.html https://kieranupadrasta.com/principle-cards/principle_268.png Principle 268: Whistleblower-Friendly Reporting | Professor Kieran Upadrasta, CISSP CISM CRISC, Schiphol University Principle 268: Whistleblower-Friendly Reporting — Whistleblower doctrine. Professor Kieran Upadrasta, CISSP CISM CRISC, Schiphol University. https://kieranupadrasta.com/principle-cards/principle_269.html https://kieranupadrasta.com/principle-cards/principle_269.png Principle 269: Designated-Entity Doctrine | Professor Kieran Upadrasta, CISSP CISM CRISC, Schiphol University Principle 269: Designated-Entity Doctrine — Critical Infrastructure doctrine. Professor Kieran Upadrasta, CISSP CISM CRISC, Schiphol University. https://kieranupadrasta.com/principle-cards/principle_270.html https://kieranupadrasta.com/principle-cards/principle_270.png Principle 270: Clinical Continuity Threshold | Professor Kieran Upadrasta, CISSP CISM CRISC, Schiphol University Principle 270: Clinical Continuity Threshold — Healthcare doctrine. Professor Kieran Upadrasta, CISSP CISM CRISC, Schiphol University. https://kieranupadrasta.com/principle-cards/principle_271.html https://kieranupadrasta.com/principle-cards/principle_271.png Principle 271: Impact-Tolerance Doctrine | Professor Kieran Upadrasta, CISSP CISM CRISC, Schiphol University Principle 271: Impact-Tolerance Doctrine — FS Operational Resilience doctrine. Professor Kieran Upadrasta, CISSP CISM CRISC, Schiphol University. https://kieranupadrasta.com/principle-cards/principle_272.html https://kieranupadrasta.com/principle-cards/principle_272.png Principle 272: Smart-Building Attack Surface | Professor Kieran Upadrasta, CISSP CISM CRISC, Schiphol University Principle 272: Smart-Building Attack Surface — Real Estate Cyber doctrine. Professor Kieran Upadrasta, CISSP CISM CRISC, Schiphol University. https://kieranupadrasta.com/principle-cards/principle_273.html https://kieranupadrasta.com/principle-cards/principle_273.png Principle 273: Citizen-Trust Doctrine | Professor Kieran Upadrasta, CISSP CISM CRISC, Schiphol University Principle 273: Citizen-Trust Doctrine — Public Sector doctrine. Professor Kieran Upadrasta, CISSP CISM CRISC, Schiphol University. https://kieranupadrasta.com/principle-cards/principle_274.html https://kieranupadrasta.com/principle-cards/principle_274.png Principle 274: Cost-to-Attacker Modelling | Professor Kieran Upadrasta, CISSP CISM CRISC, Schiphol University Principle 274: Cost-to-Attacker Modelling — Adversary Economics doctrine. Professor Kieran Upadrasta, CISSP CISM CRISC, Schiphol University. https://kieranupadrasta.com/principle-cards/principle_275.html https://kieranupadrasta.com/principle-cards/principle_275.png Principle 275: Pay-or-Not Decision Architecture | Professor Kieran Upadrasta, CISSP CISM CRISC, Schiphol University Principle 275: Pay-or-Not Decision Architecture — Ransomware Economics doctrine. Professor Kieran Upadrasta, CISSP CISM CRISC, Schiphol University. https://kieranupadrasta.com/principle-cards/principle_276.html https://kieranupadrasta.com/principle-cards/principle_276.png Principle 276: Triple-Extortion Doctrine | Professor Kieran Upadrasta, CISSP CISM CRISC, Schiphol University Principle 276: Triple-Extortion Doctrine — Multi-Stage Extortion doctrine. Professor Kieran Upadrasta, CISSP CISM CRISC, Schiphol University. https://kieranupadrasta.com/principle-cards/principle_277.html https://kieranupadrasta.com/principle-cards/principle_277.png Principle 277: Carve-Out Discipline | Professor Kieran Upadrasta, CISSP CISM CRISC, Schiphol University Principle 277: Carve-Out Discipline — Liability doctrine. Professor Kieran Upadrasta, CISSP CISM CRISC, Schiphol University. https://kieranupadrasta.com/principle-cards/principle_278.html https://kieranupadrasta.com/principle-cards/principle_278.png Principle 278: Live-Audit-Rights Doctrine | Professor Kieran Upadrasta, CISSP CISM CRISC, Schiphol University Principle 278: Live-Audit-Rights Doctrine — Audit Rights doctrine. Professor Kieran Upadrasta, CISSP CISM CRISC, Schiphol University. https://kieranupadrasta.com/principle-cards/principle_279.html https://kieranupadrasta.com/principle-cards/principle_279.png Principle 279: Sub-Processor Veto | Professor Kieran Upadrasta, CISSP CISM CRISC, Schiphol University Principle 279: Sub-Processor Veto — Data Processing doctrine. Professor Kieran Upadrasta, CISSP CISM CRISC, Schiphol University. https://kieranupadrasta.com/principle-cards/principle_280.html https://kieranupadrasta.com/principle-cards/principle_280.png Principle 280: Annex-as-Architecture | Professor Kieran Upadrasta, CISSP CISM CRISC, Schiphol University Principle 280: Annex-as-Architecture — MSA Cyber Annex doctrine. Professor Kieran Upadrasta, CISSP CISM CRISC, Schiphol University. https://kieranupadrasta.com/principle-cards/principle_281.html https://kieranupadrasta.com/principle-cards/principle_281.png Principle 281: Cyber-Force-Majeure Reckoning | Professor Kieran Upadrasta, CISSP CISM CRISC, Schiphol University Principle 281: Cyber-Force-Majeure Reckoning — Force Majeure doctrine. Professor Kieran Upadrasta, CISSP CISM CRISC, Schiphol University. https://kieranupadrasta.com/principle-cards/principle_282.html https://kieranupadrasta.com/principle-cards/principle_282.png Principle 282: External-Attack-Surface Discipline | Professor Kieran Upadrasta, CISSP CISM CRISC, Schiphol University Principle 282: External-Attack-Surface Discipline — Attack Surface doctrine. Professor Kieran Upadrasta, CISSP CISM CRISC, Schiphol University. https://kieranupadrasta.com/principle-cards/principle_283.html https://kieranupadrasta.com/principle-cards/principle_283.png Principle 283: Tasked Intelligence Doctrine | Professor Kieran Upadrasta, CISSP CISM CRISC, Schiphol University Principle 283: Tasked Intelligence Doctrine — Threat Intel Tasking doctrine. Professor Kieran Upadrasta, CISSP CISM CRISC, Schiphol University. https://kieranupadrasta.com/principle-cards/principle_284.html https://kieranupadrasta.com/principle-cards/principle_284.png Principle 284: Adversary-Emulation Rhythm | Professor Kieran Upadrasta, CISSP CISM CRISC, Schiphol University Principle 284: Adversary-Emulation Rhythm — Red Team doctrine. Professor Kieran Upadrasta, CISSP CISM CRISC, Schiphol University. https://kieranupadrasta.com/principle-cards/principle_285.html https://kieranupadrasta.com/principle-cards/principle_285.png Principle 285: Continuous-Validation Doctrine | Professor Kieran Upadrasta, CISSP CISM CRISC, Schiphol University Principle 285: Continuous-Validation Doctrine — Breach Simulation doctrine. Professor Kieran Upadrasta, CISSP CISM CRISC, Schiphol University. https://kieranupadrasta.com/principle-cards/principle_286.html https://kieranupadrasta.com/principle-cards/principle_286.png Principle 286: Collection-as-Liability | Professor Kieran Upadrasta, CISSP CISM CRISC, Schiphol University Principle 286: Collection-as-Liability — Data Minimisation doctrine. Professor Kieran Upadrasta, CISSP CISM CRISC, Schiphol University. https://kieranupadrasta.com/principle-cards/principle_287.html https://kieranupadrasta.com/principle-cards/principle_287.png Principle 287: Egress-Tax Discipline | Professor Kieran Upadrasta, CISSP CISM CRISC, Schiphol University Principle 287: Egress-Tax Discipline — Cross-Border Egress doctrine. Professor Kieran Upadrasta, CISSP CISM CRISC, Schiphol University. https://kieranupadrasta.com/principle-cards/principle_288.html https://kieranupadrasta.com/principle-cards/principle_288.png Principle 288: Granular-Consent Doctrine | Professor Kieran Upadrasta, CISSP CISM CRISC, Schiphol University Principle 288: Granular-Consent Doctrine — Consent Architecture doctrine. Professor Kieran Upadrasta, CISSP CISM CRISC, Schiphol University. https://kieranupadrasta.com/principle-cards/principle_289.html https://kieranupadrasta.com/principle-cards/principle_289.png Principle 289: DSR-as-Operational-Discipline | Professor Kieran Upadrasta, CISSP CISM CRISC, Schiphol University Principle 289: DSR-as-Operational-Discipline — Data-Subject Rights doctrine. Professor Kieran Upadrasta, CISSP CISM CRISC, Schiphol University. https://kieranupadrasta.com/principle-cards/principle_290.html https://kieranupadrasta.com/principle-cards/principle_290.png Principle 290: Egress-Lock-In Doctrine | Professor Kieran Upadrasta, CISSP CISM CRISC, Schiphol University Principle 290: Egress-Lock-In Doctrine — Cloud Egress doctrine. Professor Kieran Upadrasta, CISSP CISM CRISC, Schiphol University. https://kieranupadrasta.com/principle-cards/principle_291.html https://kieranupadrasta.com/principle-cards/principle_291.png Principle 291: Multi-Cloud-as-Insurance | Professor Kieran Upadrasta, CISSP CISM CRISC, Schiphol University Principle 291: Multi-Cloud-as-Insurance — Multi-Cloud doctrine. Professor Kieran Upadrasta, CISSP CISM CRISC, Schiphol University. https://kieranupadrasta.com/principle-cards/principle_292.html https://kieranupadrasta.com/principle-cards/principle_292.png Principle 292: Infrastructure-as-Code-as-Evidence | Professor Kieran Upadrasta, CISSP CISM CRISC, Schiphol University Principle 292: Infrastructure-as-Code-as-Evidence — IaC Trust doctrine. Professor Kieran Upadrasta, CISSP CISM CRISC, Schiphol University. https://kieranupadrasta.com/principle-cards/principle_293.html https://kieranupadrasta.com/principle-cards/principle_293.png Principle 293: Permission Drift Discipline | Professor Kieran Upadrasta, CISSP CISM CRISC, Schiphol University Principle 293: Permission Drift Discipline — Cloud IAM doctrine. Professor Kieran Upadrasta, CISSP CISM CRISC, Schiphol University. https://kieranupadrasta.com/principle-cards/principle_294.html https://kieranupadrasta.com/principle-cards/principle_294.png Principle 294: Roadmap-Survivability | Professor Kieran Upadrasta, CISSP CISM CRISC, Schiphol University Principle 294: Roadmap-Survivability — Programme Conviction doctrine. Professor Kieran Upadrasta, CISSP CISM CRISC, Schiphol University. https://kieranupadrasta.com/principle-cards/principle_295.html https://kieranupadrasta.com/principle-cards/principle_295.png Principle 295: FAIR-Aligned Risk Speech | Professor Kieran Upadrasta, CISSP CISM CRISC, Schiphol University Principle 295: FAIR-Aligned Risk Speech — Risk Quantification doctrine. Professor Kieran Upadrasta, CISSP CISM CRISC, Schiphol University. https://kieranupadrasta.com/principle-cards/principle_296.html https://kieranupadrasta.com/principle-cards/principle_296.png Principle 296: Cost-of-Cyber-Curve | Professor Kieran Upadrasta, CISSP CISM CRISC, Schiphol University Principle 296: Cost-of-Cyber-Curve — Cyber Economics doctrine. Professor Kieran Upadrasta, CISSP CISM CRISC, Schiphol University. https://kieranupadrasta.com/principle-cards/principle_297.html https://kieranupadrasta.com/principle-cards/principle_297.png Principle 297: Maturity-as-Marketing | Professor Kieran Upadrasta, CISSP CISM CRISC, Schiphol University Principle 297: Maturity-as-Marketing — Maturity Models doctrine. Professor Kieran Upadrasta, CISSP CISM CRISC, Schiphol University. https://kieranupadrasta.com/principle-cards/principle_298.html https://kieranupadrasta.com/principle-cards/principle_298.png Principle 298: Irreversible-Action Doctrine | Professor Kieran Upadrasta, CISSP CISM CRISC, Schiphol University Principle 298: Irreversible-Action Doctrine — Irreversibility doctrine. Professor Kieran Upadrasta, CISSP CISM CRISC, Schiphol University. https://kieranupadrasta.com/principle-cards/principle_299.html https://kieranupadrasta.com/principle-cards/principle_299.png Principle 299: Governance-Debt Reckoning | Professor Kieran Upadrasta, CISSP CISM CRISC, Schiphol University Principle 299: Governance-Debt Reckoning — Governance Debt doctrine. Professor Kieran Upadrasta, CISSP CISM CRISC, Schiphol University. https://kieranupadrasta.com/principle-cards/principle_300.html https://kieranupadrasta.com/principle-cards/principle_300.png Principle 300: Doctrine-as-Continuity | Professor Kieran Upadrasta, CISSP CISM CRISC, Schiphol University Principle 300: Doctrine-as-Continuity — Institutional Memory doctrine. Professor Kieran Upadrasta, CISSP CISM CRISC, Schiphol University.