Heatmaps to Histograms: Field Notes

Heatmaps to Histograms: Field Notes

Home
The Book
Resources
Archive
About

Welcome to From Heatmaps to Histograms: Field Notes

Risk quantification doesn't have to be expensive, overly technical, or impossible to implement. This newsletter delivers practical methods, tools, and frameworks that you can put to work immediately - no advanced degrees or specialized software required.

I'm Tony Martin-Vegue, author of the upcoming book "From Heatmaps to Histograms: A Practical Guide to Cyber Risk Quantification" (Apress, early 2026). I've spent years field-testing these approaches with real-world constraints: limited budgets, tight deadlines, and skeptical stakeholders.

What you'll get:

  • Step-by-step quantification methods you can implement today

  • GenAI prompts for risk analysis (done responsibly)

  • Deep dives into public datasets and industry reports

  • Downloadable templates and practical resources

  • Behind-the-scenes content from the book

Whether you're in cybersecurity, GRC, or broader risk management, this is for professionals who need results, not theory.

More from me

Read my essays on risk and quantification | Follow me on LinkedIn

Subscribe to get full access to the newsletter and publication archives.

User's avatar

Subscribe to Heatmaps to Histograms: Field Notes

Risk quantification made practical. Monthly insights, tools, and techniques for cybersecurity, GRC, and risk management professionals.

People

Tony Martin-Vegue

@tonymartinvegue
Tony Martin-Vegue's avatar
I write about cyber risk quantification, decision-making under uncertainty, and how to think clearly when data isn’t perfect. I share practical ideas, tools, and stories from the front lines of security and risk modeling without the hype.
© 2025 Tony Martin-Vegue
PrivacyTermsCollection notice
Start writingGet the app
Substack is the home for great culture