About Unl0ckd

My Mission

I want to empower people to make better decisions from a position of safety and security.

How do I accomplish this?

By sharing the knowledge I’ve gained in my professional field of Information Security and through life experience I’ve accumulated as a brother, husband, and father.

Information Security

I’ve worked in the Information Security profession for nearly ten years. I’ve worked for the Public sector for over half of that, I’ve contributed my skills to a consulting firm where I gained exposure to the environments of several Fortune 100 companies. Now, I contribute my skills to a product company where security is a relatively new program. There have been significant challenges in each of these environments that I’ve faced - some successfully, some unsuccessfully.

What I have learned is this: there is much I have yet to learn, and much that we as a community have yet to learn.

This applies to life, in general, as well. I can learn something from every situation I find myself in. Every client, every project, every colleague, every manager, every vulnerability, and every report has taught me something. I’ve had the pleasure of working with some outstanding people during my career who have espoused the same belief, and I think it is this attitude above any else that determines one’s capability, and ultimately, success.

Now I’d like to share some of what I’ve learned with you. This site contains articles pertaining to my experience in the field of Information Security. I also have a healthy obsession with development, particularly web and mobile applications. Sometimes, articles on those topics will appear as well. Some articles will be plain-old rants of mine, or be related to my personal hobbies.

In any case, this site serves as a two-way platform: I would like to hear from you.

A note on external resources

cloudflare.com
This site’s theme loads a syntax highlighting javascript library, highlight.js, from cloudflare’s CDN.

google-analytics.com
Requests are made to Google Analytics based on the GA tracking code I implemented in this site. Since this site is static, which means there’s no application logic on the backend, I have no way of knowing how many people visit the site and read each post. I’d like to tailor the site to meet visitor needs, so I use GA as the means to do so.

The information I am able to view using GA includes:

Google generates and stores this information on their servers as part of the terms of use of Google Analytics. I do not perform any analysis on this data other than look at the information Google makes available to me via Google’s own dashboard.

On GDPR

Update:As of 2019-04-25, I have updated the theme used by this site. A recent update to this theme removed the use of webfonts. This better protects user privacy. Now, the only cookies that this site sets are for Google Analytics. (NB: I am evaluating other analytics providers to choose one that protects user privacy better than the world’s largest advertising company)

As I describe above, I collect limited information when you browse this site. The EU GDPR law places stringent data privacy controls on Google Analytics users. I fully support the push for privacy and, as such, I’ve done everything in my power to reduce the amount of information Google Analytics collects and stores about visitors to this site.

Using the controls available to me, I have set the following data retention policies in my Google Analytics dashboard:

Bucket permissions

Google Analytics will store user visit history for 14 months - the lowest possible setting. Additionally, I have disabled the “Reset on new activity” feature, meaning your data will expire 14 months from the first time you visit this site. As Google enables more granular control for Analytics users, I will continue to update the privacy settings for visitors to be the most stringent possible.