I've just taken the first step toward something that will either be a disaster or change everything. There isn't a lot of middle ground in that sentence, and I've made peace with it. RabbidLabs is now real.

The Question That Wouldn't Let Go

For months there's been one problem gnawing at me in the background of pretty much everything I do. It shows up on engagements, and it shows up in conversations with security leaders who have every tool under the sun and still can't give a straight answer about where their actual risk sits. It's a cybersecurity problem nearly every organization faces, and almost nobody manages, measures, or structures it correctly. I'd catch myself thinking about it at the worst possible times, on a drive, or lying awake at 1AM with half an idea and no notebook nearby. For a long time my answer to all of it was "I'll think about it more later." Later is over. I've stopped "just thinking about it".

RabbidLabs Is Now Real

RabbidLabs isn't a slide deck or a notes app full of half-formed thoughts anymore. It's a business, a website, and the first actual lines of code. I'm laying the groundwork right here in Alberta, building toward the first demo of what I believe will become a cybersecurity SaaS platform — one designed to take those cyclical problems and solve it practically, and at scale.

RabbidLabs fox mascot standing in a modern office lobby in front of the RabbidLabs logo on the wall

I'm not ready to say exactly what the platform does yet. The concept is novel enough that I'd rather put a working demo in front of people than a hype thread, and the build ahead of me is long. This is day one of what's probably a multi-year effort. But I can tell you this much, the problem is real, the opportunity behind solving it is enormous, and since I forced myself to actually commit to building it I haven't been able to think about much else.

Compliance Isn't the Problem. Execution Is.

If RabbidLabs has a thesis statement this early, this is it. Most organizations aren't short on policy, framework, or a checkbox. They've got the binders. What they're missing is a reliable, structured way to actually execute against the risk those binders, describe, and to prove it with something better than a spreadsheet someone updates twice a year. Passing an audit and being secure are two different outcomes, and far too many teams only have visibility into the first one.

RabbidLabs banner reading 'Compliance isn't the problem. Execution is.' next to the RabbidLabs fox mascot, with the tagline 'Building the future of cybersecurity operations'

That gap between paperwork and practice is exactly the space RabbidLabs is being built to close. Not by adding another dashboard nobody opens, but by giving teams a way to manage, measure, and structure the work itself, the part that actually reduces risk, not just the part that gets reported on.

Day Zero

Every company has a moment before there's anything to show for itself — just a blank terminal, an empty repo, and an idea that won't leave you alone. Mine looked like this:

Terminal showing mkdir and git init commands creating the rabbidlabs-platform repository, followed by the first commit titled day zero

There's something electric about that first commit. No customers, no roadmap anyone outside my own head has seen, just a README and a decision that I'm not putting this off anymore. Everything from here gets built in the open, one commit at a time.

What's Next

Phase zero is small and deliberate on purpose: validate the problem with real security leaders, build a first demo that proves the concept rather than just describing it, and resist the urge to over-build before anyone outside my head has confirmed I'm solving the right thing.

Terminal showing a ROADMAP.md checklist for RabbidLabs Phase 0 with items for validating the problem and building the first demo, followed by a git log of the first commit

If you run security, risk, or compliance at an organization and the gap between "compliant" and "actually secure" sounds familiar, I'd genuinely like to hear how it shows up for you. That kind of conversation is exactly what Phase 0 is built around.

An Idea That Won't Let Me Sleep

I don't know yet whether RabbidLabs ends up being a disaster or the thing that changes everything for me. What I do know is that the version of me who kept this idea in a notes app for months was a lot less interesting than the version of me who's now staring down a blank screen and an empty repo, trying to build something that hasn't existed yet. There's something electric about that. I'll be writing more here as the build progresses — for now, go take a look at rabbidlabs.com and watch this space.