Blog by Benjamin Langrill

The words on the console are drenched in red. Red bad.

The level 3 SOC team is looking at you with this urgent escalation. They fear an advanced threat actor is moving around the internal network. This critical endpoint happened to have some extra logging enabled and now reports a java app i...

There are a variety of activities that you as a cyber defender could do. This leads to a bewildering number of options across price points and against different types of threats. Large organizations often have strict regulatory requirements and/or know that they have to guard against all threats but...

This is the driving question behind security programs. There are a lot of threats out there and twice as many ways to defend.

One solution is maturity and frameworks like the Cybersecurity Maturity Model Certification (CMMC). This model defines 3 levels with increasing cyber defense requirem...

I was ready to close out the Webex call and instead the break in silence reshaped my security ethos. "Wait, can you explain that again?"

It was March 2017 and pre-pandemic remote meetings were audio only. I was used to speaking into the void so I couldn't read body language or see gaping...

You are staring at a 10,000 row spreadsheet of vulnerability scanner results…that's 10,000 after filtering for high risk.