Blog
-
The Two Sides of the Cybersecurity Coin
A cybersecurity student shares insights from experiencing both Governance, Risk & Compliance (GRC) and Security Operations roles through two different internships.
Read more... -
What I Learned Auditing a Corporate Merger
A cybersecurity intern's perspective on the complex process of securely integrating two companies' digital infrastructure during a major corporate merger.
Read more... -
From Pipelines to Policies: Auditing Modern Application Development
My deep dive into auditing a modern CI/CD pipeline, connecting high-level security policies to the technical reality of developer workflows and tools like Snyk and SonarQube.
Read more... -
The Human Element: I Phished My Own Company (For Science!)
How I used OSINT, AI, and a little social engineering to build a realistic spearphishing campaign to test the human firewall at my own company.
Read more... -
From Auditing Firewalls to Defending Them
The journey from a GRC auditor to a SOC analyst, and how seeing security from both sides provides a unique and powerful perspective.
Read more... -
The Digital Detective: A Day in the Life of a SOC Analyst
From the initial alert to the final verdict, a look at the investigative process of a SOC analyst hunting for threats in a sea of data.
Read more... -
The Art of Triage
When every alert looks urgent, how do you decide what's truly dangerous? A look at the most critical skill for a SOC analyst: triage.
Read more...