What 800-year-old stone guardians can teach us about protecting modern infrastructure

When I stood on the upper gallery of Notre Dame de Paris in 2012, I wasn't thinking about cybersecurity. I was thinking about the remarkable audacity of medieval builders — craftsmen who perched these grotesque stone sentinels hundreds of feet in the air, staring down at Paris with an intensity that centuries haven't dulled.

It wasn't until years later, deep in a career defending enterprise infrastructure, that the parallel hit me.

Gargoyles and cybersecurity have more in common than you might think.

Perimeter Defense

Medieval cathedral builders placed gargoyles at the highest points of their structures — elevated, exposed, scanning the horizon. They were the first line of defense, positioned to see threats before threats reached the walls.

Modern network security works the same way. Firewalls, perimeter monitoring, and intrusion detection systems sit at the edge of your environment — watching inbound traffic, identifying anomalies, stopping threats before they penetrate your core infrastructure. Fortinet's FortiGate does exactly this, consolidating firewall, IPS, and SD-WAN into a single elevated vantage point over your entire network.

Embedded Protection

Gargoyles aren't decorations bolted onto a finished building. They're carved into the stone itself — structurally integrated, load-bearing in some cases, inseparable from the architecture they protect.

The best cybersecurity works the same way. It isn't a product you purchase and plug in after the fact. It's embedded into your infrastructure from the ground up — endpoint protection, cloud security, zero-trust access — woven into the fabric of how your organization operates.

Deterrence

Those grotesque faces weren't accidental. Medieval builders understood something fundamental about security: visible, credible defense changes attacker behavior. A threat actor scanning for vulnerabilities moves on when they see a hardened target.

Threat intelligence, visible security protocols, and regular vulnerability assessments send the same message to modern adversaries. You are not the easy target.

Redirecting Threats

Here's something most people don't know about gargoyles: many are functional waterspouts, designed to redirect rainwater away from the stone walls to prevent erosion. They don't just ward off evil — they actively channel destructive forces away from what matters.

DDoS mitigation and traffic shaping work identically. Malicious traffic isn't just blocked — it's redirected, absorbed, and neutralized before it can erode your systems.

Silent Until Needed

The gargoyles of Notre Dame blend into the architecture so completely that tourists walk past them without a second glance. They are unobtrusive, patient, always present.

EDR agents, SIEM platforms, and behavioral analytics run the same way — invisible in the background, generating no friction for legitimate users, activating the moment anomalous behavior is detected.