Anytime I don’t post anything for a while on this blog (or on earlier selfhosting blog attempts), I come back to the same topic: what are my current priorities? What’s keeping me busy? It might not be the most informative, but it does help me to organize my thoughts, what’s important, the status of my work and personal efforts. So, here we go!
A quick summary
- Work
- Cloud security (Azure reference architecture and best practices, specifically Defender for Cloud, Entra ID Protection, Log Analytics workspaces, Sentinel (data lake), Defender XDR)
- Zero trust workplace design and implementation (CIS Secure Suite, Microsoft and MacOS benchlining and benchmarking)
- General security posture improvement efforts (Exchange Online Protection threat policies, Admin Account Protection, attack surface reduction rules (ASR))
- Some notes on Defender XDR and especially KQL
- Personal
- Made my Python
flaskweb app for SOC work publicly accessible on https://sec.joostagterhoek.nl (how? See this previous blog post) - Picked up my malwaredevelopment study again with Maldev Academy (I really need to tidy up those notes…)
- Emacs:
- Built a wonderful workflow with
org-roam,org-agenda-custom-commandsand some other configurations (currently in a private Gitlab-repo, I will make this public as soon as I know it doesn’t contain any sensitive data)
- Built a wonderful workflow with
- Made my Python
For now, that’s it! Take care and see you soon.