career Ten months in to being the SISO Reflections on ten (ish) months into my post as Senior Information Security Officer.
how to Using Docker for a PHP, MariaDB and Nginx project Those of you that are regular readers will notice that my posting is waaaay behind schedule, and that my goal of posting once a week has failed again so far. Sorry about that! Hopefully this post will be useful to you. I use my blog primarily for two things: because
Security Congress 2022 Catching up: on-demand sessions from (ISC)² Security Congress 2022 (ISC)² make session recordings available after the event, and with a number of sessions of interest going on simultaneously these are invaluable. Any sessions I watched prior to the end of December I received CPE / CPD credits for, but the recordings are around afterward too. Here's some summary
Things I need on my desk I saw a tweet from a computer company recently that asked people to name three things they needed on their desk. One person responded "monitor, keyboard, mouse - that was easy", but this got me wondering about what things I need versus the things that I want, or
malware Playing with some old malware Malware has been around for ages, but how do some old malware samples work on more modern Operating Systems?
cyber security A QBot near miss, and a look at what might have been A look at some malware that would have been delivered to a colleague, but they noticed something dodgy was happening!
go bag A cyber security incident response "go bag" I've heard this concept discussed before yet have failed to actually put one together. I started drafting this post back in October, when the concept came up again at a talk during (ISC)² Security Congress 2022 (day one, during "Incident Response Ready - Key Steps of a
Security Congress 2022 (ISC)² Security Congress 2022 - day three As Security Congress draws to a close, here's my notes on the final day.
Security Congress 2022 (ISC)² Security Congress 2022 - day two Having woken up earlier than planned, I spent time pre-keynote watching talks from Monday. Not all the sessions I was interested in were ready yet (we were told it could take 24 hours), so there will be more for me to look at. I won't write about catch
Security Congress 2022 (ISC)² Security Congress 2022 - day one Congress got off to a great start and included a heart-warming (and I'll be honest tear inducing) story from one of the speakers.
home automation Simulating presence with Home Assistant How to make an automation to randomly turn on lights while you're away.
how to Solis Hybrid Inverter: charging from the grid How to configure your Solis Hybrid Inverter to charge from the grid on schedule.
solar Going solar Installing solar panels has made a large difference to our energy bills, albeit we've essentially pre-paid for our energy.
Developing tests Developing tests: introduction Testing software is important, and can validate that things work as planned (or at all). Let's look at software testing in more details.
cyber security When do you pay the ransom? Should you pay the ransom when attacked with ransomware? I don't think there's a clear cut answer to that...
CISSP CISSP and (ISC)² membership (over) a year on Back in September 2020 I took the training course and exam to become a CISSP - a Certified Information System Security Professional (you can read my blog post about the experience here [https://blog.jonsdocs.org.uk/2020/10/11/my-cissp-experience/]). Since then I've received regular news and
work Standing at a career crossroads I'm considering my career at the moment, and hoping writing down my thoughts helps me work out my next move.
how to Setting up MTA-STS using AWS S3, CloudFront and AWS Certificate Manager Mail Transfer Agent Strict Transport Security is a reasonably new protocol, that helps protect email you're being sent from interception. Here's how to set it up with AWS S3, CloudFront and Certificate Manager.
how to Setting up MTA-STS using Azure Static Web Apps Mail Transfer Agent Strict Transport Security is a reasonably new protocol, that helps protect email you're being sent from interception. Here's how to set it up with Azure static web apps.
hacktoberfest Hacktoberfest 2021 I didn't leave it to the last minute this year, woohoo! Ok, I'm kidding. As regular readers will know from posts about this [https://blog.jonsdocs.org.uk/tag/hacktoberfest/], Hacktoberfest is something I always end up leaving to the last minute. This year I started
