9 ways to give access to an internal tool
The following is a work of fiction. However all the solutions are real things I've attempted in my time as a Cloud Consultant. Image this, you're minding your own business when an...
Category
Industry
A response to "Thinking About the Future of InfoSec"
I recently read an article by Daniel Miessler about his predictions for the future of cybersecurity. He talks about changes to organizations, the market and the day to day of cybersecurity professionals. I decided to write down some of my thoughts in response.
Helping engineers make better estimates
One insight that I've found pretty ubiquitous in my career is that engineers hate being made to provide estimates on things. Still, in my role selling consulting engagements and pr...
Critiquing cloud lockin
I hear a lot of talk about cloud lockin. I hear it from people with self funded startups, authors on tech blogs and developers. The argument I hear most is that if you start using...
Calling the brute(force) squad
I got this picture in my family chat recently with a the question "is this correct?" The short answer is "kinda". The long answer is this blog post :) What is Brute Forcing Put sim...
Security doesn't have to be a blocker
A few months ago during a conversation at a secops event, the topic of granting exceptions came up. One of the attendees was shared his dismay. "Management is always steamrolling m...