Hi everyone,
as you can see from my nickname I am a lover of Rock music and especially Ledzeppelin.
it won't be a music blog but it's right to remember our passions and tell who we are before getting into the heart of what we do and what we want to spread the word about.
In this blog we will talk mainly about cybersecurity, trying to bring my experience in the sector to those who perhaps know nothing about it and/or to those who want to delve deeper into the subject. I will do an in-depth dive into the themes, so in my posts you will be able to find not only discursive information that explains the various themes, but also technical references that explain how to apply the various themes.
Cyber security is the term with which today we deal with computer security issues that are not only offensive, but also defence. You will often hear about Red Team, Blue Team and Purple Team. In reality, cybersecurity is not just this. In my work my main goal is to secure enterprise companies from cyber attacks and allow them to arrive before the attackers arrive. Cybersecurity today goes hand in hand with automation and many mechanisms that were previously carried out manually are now completely automated.
Cybersecurity does not have a precise date of its birth, but it has been approaching the world of cybersecurity for more than 30 years now. When I started my career there were no advanced security solutions and the firewalls that are now called NGFW only performed flow control functions with what are called ACLs
the outbreak and expansion of information security can be compared to the expansion of the internet, whereby many more attacks are carried out and many more defense tools must counter the more sophisticated attacks. It's now commonplace to talk about Ramsonware, but about 20 years ago when I started working in the world of computer security, it was barely possible to consider them viruses.
With the expansion of cybersecurity, the use of both criminal cybergangs and development and research teams to counter attacks has also increased. We live in a world where the use of the internet is essential and the exposure of systems makes this a danger. The advantage is obviously that many more experts in the sector are entering the market, although there is not yet great maturity on the part of all companies. The reason why I want to bring my voice is because there are often people who profess to be computer security experts but in reality they don't have all this experience. I will bring you experiences, success and failure cases, touching on more technical than regulatory aspects (because cybersecurity is also this, just think of the GDPR regulation).
I will therefore see you in my next articles which I hope will be of value and can help your understanding.
See you guys
Jimmypage