Home
securing.dev
Cancel

You can’t do "DevSecOps" without doing "DevOps"

The knowledge shared in this post is derived from my experience building the DevSecOps program at Thermo Fisher Scientific - a global Fortune 100 laboratory sciences company with over 130,000 emp...

Hacking the OSCP: Recon

As I start moving my notes from Notion to Obsidian in order to reduce the chance of losing access to them on exam day, I thought I’d share the initial recon process I’ve been using to work through ...

Life after the AI-pocalypse

Full Disclosure up-front: I am employed as a Principal Security Specialist at GitHub at the time of publishing this post. I disclose this because GitHub recently released Copilot - an artificially ...

Advice for breaking into InfoSec

In studying for the OSCP, I have had the great pleasure to virtually meet and build relationships with a number of individuals pursuing a career in Information Security. Until now I’ve been offer...

Predictions for 2023

As 2022 draws to a close, I thought it might be interesting to publicly share a few of my predictions for the coming year across various topics of interest and current world events. I’ve categori...

Hacking the OSCP

As information security professionals we are fortunate to have a vast landscape of learning opportunities - and with ongoing developments in technology, the chance to learn new things is likely t...

Scanning in the IDE: A Bad IDE(A) for Developers

The information shared in this series is derived from my experience building the DevSecOps program at Thermo Fisher Scientific (a global Fortune 100 laboratory sciences company). Full Disclosur...

Great Reads of 2022

One thing I particularly enjoy doing with my free time is reading - whether that be books, blogs, news articles, or research papers. This year I’ve enjoyed reading about a number of interesting t...

Security Maturity: Geriatric Technologies

TL;DR / Summary at the end of the post. The information shared in this series is derived from my experience building the DevSecOps program at Thermo Fisher Scientific (a global Fortune 100 labora...

With Technology, there’s no such thing as “Magic"’

TL;DR / Summary at the end of the post. Disclaimer: The thoughts and opinions shared in this post are mine alone, and do not reflect those of my employer - or any other organization that I am affi...