All Posts

The Blog

Real notes from real deployments. 10+ years of enterprise IT experience across banking, aviation, and conglomerates.

The CrowdStrike Outage: What Every IT Team Should Take Away

8.5 million Windows devices. 5,000+ flights cancelled. One faulty sensor update. The most important resilience lesson of the decade.

Cyber Security Jan 20256 min read →

Microsoft Entra ID: Modernizing Enterprise Identity

Azure AD is now Entra ID — but the real shift is deeper. A practitioner's guide.

Jan 2025 · 7 min→

AI in the SOC: Separating Hype from Reality

Every vendor claims AI-powered detection. Here's what actually works — and what doesn't.

Dec 2024 · 6 min→

Ransomware Resilience: Building a Recovery-First Strategy

Prevention alone isn't enough. A practical framework for when prevention fails.

Nov 2024 · 7 min→

SIEM Implementation: Key Lessons from the Field

More organizational than technical. Lessons from centralizing log monitoring at enterprise scale.

Oct 2024 · 5 min→

Zero Trust Architecture: Where to Actually Start

Most guides describe the destination. This focuses on the journey in an existing enterprise.

Sep 2024 · 6 min→

Privileged Access Control: Lessons from a Bastion Host Deployment

Third-party vendor access is the most under-monitored risk. Here's how to fix it.

Aug 2024 · 6 min→

Data Center Migration: A Step-by-Step Approach

What a three-month DC migration actually looks like — the planning, surprises, and lessons.

Jul 2024 · 7 min→

Huawei Cloud vs AWS: A Practical Infrastructure Perspective

Having migrated enterprise workloads to Huawei Cloud, here's my honest comparison with AWS.

Jun 2024 · 7 min→

Cloud Security Posture Management: A Practitioner's Guide

Misconfiguration is still the #1 cause of cloud breaches. CSPM is how you find them first.

May 2024 · 6 min→