Tech Kettle

This 80's book of espionage story still brings attention to modern cybersecurity professionals, and remains surprisingly relevant to today’s world. The book is made up of many easy-to-read short to medium-sized chapters, and things start to get really thrilling around chapter 29. I could be biased here! Through my reading of this thriller, I have distilled a couple of interesting lessons that I felt I had to share. While the protagonist (The author himself) exhibits hands-on experience on Linux and programming, he wasn't an IT specialist by profession, so you will come across some unusual naming like "one-way trap-door software" to refer to hashing algorithm used to store passwords on Unix system. Being a non-fiction book, this is royally a true reference for the history of technology. I learned that treating cancer tumors at the cellular level using atomic particles was already operational during the 80's, and the intercontinental fiber optic cable was also laid...

I was reading an article about cybersecurity strategy and how some principles could be brought on table for a business to hold a stable cybersecurity posture, like having global policy with all its procedures, guidelines and baselines, maintaining a disaster recovery plan for potential cybersecurity incidents and adhering to reknown security frameworks and standards like NIST 800-53a and ISO 27001. In that article there was one principle mentioned however, that doesn't flow nice with the best practices as far as my experience has taught me, that principle is "apply update as soon as it is available... or .. update promptly.." As matter of fact, when we operate critical systems we are so cautious that when an update is available, we set a delay period to observe and inspect potential feedback, so in case a reported bug or misconfiguration was originated by the applied update we would have kept our systems safe until a secure update has been released. A well respected busi...

I passed the CISSP exam on the first try at the 125th question, Thanks to GOD. I'm relieved as I don't have take this exam again. This is the most significant experience in my career, acquiring new knowledge in information security while studying for the exam, was a wonderful journey.   https://commons.wikimedia.org/wiki/File:Certified_Information_Systems_Security_Professional_logo.png   This is indeed the most satisfactory personal achievement in my career, as matter of fact I'm more keen then ever before, to springboard my career to new roles in cybersecurity. Study resources I used The CISSP community on Reddit is a gold mine for CISSP exam takers. Used the CISSP Official Study Guide OSG (8th edition) as reference, but never read it cover to cover. Multiple videos form "Thor", "Certification destination", "Inside cloud and security" and many others. Boson CISSP, this practice exams goes deeper in details (more technical), which may help to...