I want to empower people to make better decisions from a position of safety and security.
How do I accomplish this?
By sharing the knowledge I’ve gained in my professional field of Information Security and through life experience I’ve accumulated as a brother, husband, and father.
I’ve worked in the Information Security profession for nearly ten years. I’ve worked for the Public sector for over half of that, I’ve contributed my skills to a consulting firm where I gained exposure to the environments of several Fortune 100 companies. Now, I contribute my skills to a product company where security is a relatively new program. There have been significant challenges in each of these environments that I’ve faced - some successfully, some unsuccessfully.
What I have learned is this: there is much I have yet to learn, and much that we as a community have yet to learn.
This applies to life, in general, as well. I can learn something from every situation I find myself in. Every client, every project, every colleague, every manager, every vulnerability, and every report has taught me something. I’ve had the pleasure of working with some outstanding people during my career who have espoused the same belief, and I think it is this attitude above any else that determines one’s capability, and ultimately, success.
Now I’d like to share some of what I’ve learned with you. This site contains articles pertaining to my experience in the field of Information Security. I also have a healthy obsession with development, particularly web and mobile applications. Sometimes, articles on those topics will appear as well. Some articles will be plain-old rants of mine, or be related to my personal hobbies.
In any case, this site serves as a two-way platform: I would like to hear from you.
A note on external resources
Requests are made to Google Analytics based on the GA tracking code I implemented in this site. Since this site is static, which means there’s no application logic on the backend, I have no way of knowing how many people visit the site and read each post. I’d like to tailor the site to meet visitor needs, so I use GA as the means to do so.
The information I am able to view using GA includes:
- The language and country of a browser, based on it’s “Accept-Language” header.
- Approximate city, country, and ISP based on the IP address of the client requesting resources from this site.
- Browser and Operating System, based on the User-Agent string of the client.
Update:As of 2019-04-25, I have updated the theme used by this site. A recent update to this theme removed the use of webfonts. This better protects user privacy. Now, the only cookies that this site sets are for Google Analytics. (NB: I am evaluating other analytics providers to choose one that protects user privacy better than the world’s largest advertising company)
As I describe above, I collect limited information when you browse this site. The EU GDPR law places stringent data privacy controls on Google Analytics users. I fully support the push for privacy and, as such, I’ve done everything in my power to reduce the amount of information Google Analytics collects and stores about visitors to this site.
Using the controls available to me, I have set the following data retention policies in my Google Analytics dashboard:
Google Analytics will store user visit history for 14 months - the lowest possible setting. Additionally, I have disabled the “Reset on new activity” feature, meaning your data will expire 14 months from the first time you visit this site. As Google enables more granular control for Analytics users, I will continue to update the privacy settings for visitors to be the most stringent possible.