Many people use the New Year to set new goals. I personally set goals for myself every year. Though I didn’t hit all of them in 2021, I did accomplish a few things, like completing my eCPPT and blogging monthly. This year I’ve been more conscious of others’ goals though. I want to see how…
Everybody Wants To Do Security, But Nobody Wants To Do The Basics
I’ve struggled with weight all my life. For me it’s this back and forth: lose some weight here, gain a lot there, etc etc. It wasn’t until I was about 26 that I started to see signs that my weight might be affecting my body and got a little scared. I got on the scale…
Strive To Be Pigeon Holed
A top performer like Tom Brady, who has been to 10 Super Bowls in his 19-year career as quarterback playing football, suddenly wants to play offensive linemen or maybe running back, would you let him? Just remember, he feels pigeonholed as a quarterback and wants a change! I feel like the above analogy is interesting,…
Working Remotely The New MMO?
With Covid being sprung on us, I believe technology had been ready for many years to work remotely, but the people were not. Managers, Team Leads and Executives were left with a “now what” feeling as they sent employees home. One of the best examples I have of that before the pandemic was with a…
Best Security Investment
I recently was watching a video about George St. Pierre. https://www.youtube.com/watch?v=CpfGk8ms3aY He was an active UFC fighter back around 2007. He held the UFC middleweight championship belt for several years during that time. In the video he talked about how he spent his first million. At the beginning it was very economical, like paying off…
24/7 SOC Zzzzzz…
One of my biggest frustrations is the idea of 24/7 SOC, meaning you have employees working around the clock. This frustration goes back to SOC analysts being treated as an entry level position instead of one of the most important security positions in the company. I believe 24/7 SOC can be a thing and can…
Will AI Kill The Security Industry?
Twitter user STOK (@stokfredrik) had this great question: will AI kill the security industry? In the poll, 78.9% of 4,041 votes said no it won’t. I will have to agree with the majority, but it’s not that the technology isn’t there yet. I feel that there’s one important factor that stands in the way of…
My 6 SOC Analyst Questions
When it comes to interviewing a job candidate I typically have a set of questions prepared for them. With my 6 questions I try to leave them open-ended, even the more technical ones. Interviewing is a dance where the candidate should be leading. However, this is not the norm and this leaves the interviewer more…
Immersive Labs: Best Learning Platform?
Update 7/31/2022 – I want to say over these last couple of years I believe other platforms have picked up their game and no longer believe Immersive Labs is by any means the best. I leave the post up nevertheless because it was my feeling at the time. The cost and licensing model hasn’t changed…
Expectation For Entry-Level SOC Analyst
This was a tweet that really provoked a lot of feeling for me. It’s another great question. Do you expect an entry-level SOC analyst to know what Kerberoasting is? I wish this question got more discussion on Twitter because it’s something I’m very passionate about. Now, I believe the definition for an entry level SOC…