I’m Carlos Gonçalves. I lead a CTI team and have over a decade of experience in cybersecurity. I speak at international events and am passionate about creating a safer cyberspace.
Latest Posts
-
Never Underestimate the Rebels — They’re the Ones Who Can Actually Move the System
Read more: Never Underestimate the Rebels — They’re the Ones Who Can Actually Move the SystemSome people are easy to praise. They follow instructions, avoid conflict, and never question the way things are done. Then there are the others — the ones who push back, ask uncomfortable questions, and don’t know when to let something go. These are the ones often labeled as troublemakers. But more often than not, they’re…
-
We Need Less Fluffy Language and More Clear Thinking in Cybersecurity
Read more: We Need Less Fluffy Language and More Clear Thinking in CybersecurityThere’s a particular genre of language that shows up in almost every cybersecurity report, press release, vendor pitch, or CISO recommendation: security must be robust, solutions should be advanced, systems must be resilient, and threats are always sophisticated. It’s the poetry of the unexamined, the PR sheen applied to technical failure. Take robust security. What…
-
Quantum Computing and Cyber Security: Separating Signal from Noise
Read more: Quantum Computing and Cyber Security: Separating Signal from NoiseFor the past decades, quantum computing has occupied a strange space in cybersecurity discourse — somewhere between genuine scientific interest and marketing-fueled doomsaying. We’re told it’s coming to break cryptography and render all our defenses obsolete. And yet, here we are. Seventeen years after my first contact with quantum computing during my physics degree, we’re…
-
Is Threat Intel Answering the Right Questions?
Read more: Is Threat Intel Answering the Right Questions?I’m excited to share that, in addition to my main presentation at RSAC 2025, I’ll be facilitating a Birds of a Feather session called “Is Threat Intel Answering the Right Questions?” This will be an interactive discussion—no slides, no scripted lecture—just a chance for us to examine what really matters in cyber threat intelligence. Why…
-
I’m Speaking at RSA Conference 2025! Join Me in San Francisco
Read more: I’m Speaking at RSA Conference 2025! Join Me in San FranciscoI’m thrilled to share that I’ll be speaking at RSA Conference 2025, one of the biggest cybersecurity events in the world. It’s an incredible opportunity to connect with industry experts, exchange ideas, and discuss the latest advancements in cybersecurity. My session, “Lessons Learned from Implementing an Intel-Based Purple Teaming Process”, will take place on Saturday, May 1st 12:20…