I’ll call this a personal post. I generally hate personal posts, because they take too long to create, are a bit ‘me-me-me’, and aren’t evergreen.

That introduction to web hacking series I made is, hopefully, evergreen. Some of those opinion pieces are also evergreen.

Leaving the enterprise edge

In the last several months, I’ve made the conscious decision to leave the enterprise edge. For the last many years, I’ve seen myself get increasingly good at hardware. Things like firewalls, proxy, WAF, switches, and routers.

These bones are important. Routers and switches make this blog possible. Despite what modern, arrogant security people think, firewalls are important. (Sure, they won’t keep out a dedicated hacker. But in a world of defense in depth and various security risks, maintaining compliance if you are a pharma or a bank is as business critical as keeping that hangry nation-station out of our cupboard.)

But I felt stagnated by my inability to innovate. Maybe it’s because we, as techies, have figured out networking quite some time ago. Maybe it’s because many customers like to use firewalls for their gate-keeping functions and ignore the neat, cyber stuff. I’m not sure. But the edge felt both like a commodity and not that mission critical.

Joining the brains

The natural move was towards software, multi-headed data, SIEM, and intelligence. At least, the natural move for me. It’s how this tiny brain works.

If you read this blog from the beginning to the end, you will notice a trend. At the beginning, I talked about how to get into a career in infosec. That’s because, up until that point, that’s all I had really accomplished. As I started learning, I write slightly more in depth.

I will most likely stop writing about the edge (if I did at all!) and instead start talking about data, DevOps, programming, event management, and those sorts of things. If I am as hard working as I tell people, I will also talk about hacking and bug bounties.