Wednesday 12 December 2018

Creating Wardley Maps using Lambda Functions

One of the biggest limitations that I had when trying to use/create Wardley Maps was my inability to programatically create the maps (ideally via and DSL or something like DOT language).

What I really wanted was to be able to create Maps from an serverless environment, namely from an Lambda Function.

After some research, I was able to find a nice way to do just that :slight_smile: (all the code is available on this GitHub repo 7)

After playing with a number of scenarios and techniques I zoomed in on the following tech stack:

  • AWS API Gateway exposes an url that calls an
  • Lambda function, which saves the data supplied (coffeescript) in a file that will be loaded by an HTML page
  • the html will load up visjs 1 which is what will render the graph (in the browser)
  • start a local python web server, that
  • uses pyppeteer to open up a headless version of chrome, and
  • opens the page exposed by the web server in the headless browser, and
  • takes screenshot of the page, and
  • returns png value (to the browser or lambda caller)
  • Hugo was also used locally during develpment

3 Wardley Maps Templates I’m using to talk to Generation Z Developers

Hi, as part of the content I’m writing for my “Generation Z Developers” book (see, I have created the following 3 templates to help engaging Gen Zs (kids and young adults born after 1996) into how to start mapping their life.

A key objective with these maps is to dispel a number of myths that a lot of amazing talented people have about development / programming (namely that learning how to program multiple languages is the MOST importing skillset and they they are not good at technology or development)

The 1st one is an empty map that can be used as a template.

Tuesday 11 December 2018

Please take a look my new website (and maybe get some Christmas shopping done)

In order to help with the "Generation Z Developers" book I'm writing, I created the website to centralise all content and products I created based on the book.

It would be great if you could take a look and share it with your friends :)

Sunday 7 October 2018

Just published new version of "Generation Z Developers" book (v0.60)

I've been working on a new book called "Generation Z Developers" and I really would like your feedback (you can get it for free from Leanpub at

In this version:

 - Content fixes and contributions by: Mike Eriksson, Michael Chadwick and Claudio Camerino
 - New book cover
 - New chapters:
    - DOT Language
    - AST (Abstract Syntax Tree)
    - Being criticized is an privilege

Here is the diff with the previous version: v0.50...v0.60]

Published 3 new chapters from the Generation Z Developers book

I just published the following 3 posts on medium with the content of the respective chapters on the "Generation Z Developers" book I'm currently writing:

Check out these posts and let me know what you think of them (all content is at this GitHub repo and you can use GitHub issues and Pull Requests to send your feedback)

Thursday 4 October 2018

My comments on the "Open Letter to the OWASP Board from the OWASP Chapters"

Thanks Josh (and others who put this Open Letter together) for the effort and passion on Owasp and in continuing to try to find solutions to improve the current situation

Although I don't agree 100% with the solutions presented in this document (see some of my ideas below), I'm happy to sign it since this is the kind of fact based discussions and conversations that we must have as a community (one request, can we put this letter in a GitHub repo so that we can send comments using git and sign it using Pull Requests)

Note that I have not been that involved lately in Owasp foundation threads (including reading all my email), but the key themes of decentralisation and openness are key for Owasp future and require creative solutions

My view on situations like this Open Letter, is that this is a great example of the passion that our community has for Owasp (which is a very positive thing). It is not good that they needed to resort to an Open Letter to raise the issue, but what is important is how we all react to the challenge and help to improve Owasp's future and organisation

Monday 4 June 2018

Looking for your next challenge, join the Photobox Group Security Team

Last year I took on the role of Photobox Group Security CISO and was given a strong mandate to transform the Group's security activities and build a modern security function

After building a great team and creating a strong foundation, we are looking for 3 senior security leaders to take us to the next level:

If you are looking for an environment where you will make a big difference, where you will learn constantly and will work on an empowered environment, then Photobox Group Security is for you :)

If you know me from my open source contributions, event speaking and leadership roles (past member of Owasp Board and creator of the Owasp Summits), you know that I'm a very strong believer in Openness, Trust, Quality, doing the 'right thing' and building high effective teams.

For more details on how we approach security, see this post I wrote on the Photobox Group Security website  Why join Photobox Group Security and this post from the Group's CTO How we think about Security

If you are interested in these roles, and are around London this week (4th to 8th of June), the best place to meet the team is at the Open Security Summit ( This is where you will meet most of the team and we will be able to see you in action. As a sponsor for this event we still have some day tickets available, so let us know if you need one

Monday 19 March 2018

GDPR Patterns - Working Session tomorrow

(From this GDPR Patterns Working Sessions page)

You can participate online (London) or remotely. Get your ticket here

What are GDPR Patterns?

They are reusable mappings of data journeys across specific threat modeling scenarios.
The idea is to take the diagram below and map specific scenarios to it.

Monday 5 March 2018

PDF of 'Generation Z Developer' book (v0.31)

I just pushed an update to the book I'm currently writing.  You can read this version below (via the embedded pdf) or directly at this GitHub release

Change log for this version:
  • Added initial section which shows issues from GitHub
  • New/Improved chapters
    • "The future needs you
    • "Backup your life"
  • Couple content fixes

Monday 26 February 2018

"Generation Z Developers" - new Leanpub Book

In the last couple weeks I been been working on a book called "Generation Z Developers" which you can now get it for free from Leanpub

As with all my books, the content is released under an creative commons license and hosted on this GitHub repo

One difference with this book, is that I'm using Hugo for the static site generation of the book and the leanpub content generation (and it is helping a lot)

I'm including below the current introduction to the book which provides a good explanation of why I wrote it.

Let me know what you think of it, and what other topics or ideas should be included.