Generic placeholder image

AZ500 - Identity - Part 3

I am currently studying for the AZ 500 exam which focuses on Microsoft Azure Security Technologies. This is the next blog post in that series. The first major section in the Az500 exam is focused on managing identity and access. The goal of this post is to talk about multi-factor authentication. Passwords are so 1990 In his talk (https://1990.sambego.tech/), Sam Bego discusses that the glory days of passwords are behind us.

Read more
Generic placeholder image

AZ500 - Identity - Part 2

I am currently studying for the AZ 500 exam which focuses on Microsoft Azure Security Technologies. This is the next blog post in that series. The first major section in the Az500 exam is focused on managing identity and access. The goal of this post is to talk about apps and app registrations. It would be hard to dive in to a discussion on apps without talking about OATH 2.

Read more
Generic placeholder image

First steps with Porter on Windows

Recently, a new specification reached version 1. The Cloud Native Application Bundle is designed to help take application packaging, particularly in the serverless/cloud world, to the next level. It is designed to compliment existing tool sets such as Terraform and Docker. This snip-it from the Porter FAQ is pretty telling: Porter is an implementation of the CNAB specification. Cloud Native Application Bundles is a different way of answering “_How do I reliably, securely deploy an application and its infrastructure?

Read more
Generic placeholder image

AZ500 - Identity - Part 1

I am currently studying for the AZ500 exam which focuses on Microsoft Azure Security Technologies. This is the first blog post in that series. The first major section in the AZ500 exam is focused on managing identity and access. The goal of this post is to provide a basic understanding of what is Azure active directory. What is Azure Active Directory? Azure Active Directory (Azure AD) is a cloud-based SaaS platform designed to help companies manage identities and access across numerous on-premises and cloud based services.

Read more
Generic placeholder image

CyberSecure Canada - a new cybersecurity program drizzled with maple syrup

On August 12, 2019, the Canadian federal government announced “CyberSecure Canada”, a voluntary certification program that aims to raise the cybersecurity baseline among Canadian small and medium enterprises (SMEs). The program requires Canadian SMEs to implement baseline security controls that have been selected to provide the greatest amount of protection with the least amount of burden. SMEs that demonstrates compliance to an accredited certification body will be granted a two-year certification that is intended to provide an easy way for customers, investors, partners and suppliers to know that the certified business has performed the basics to reduce their cyber risk.

Read more
Generic placeholder image

5 Important Reasons Why You Should Not Use WordPress for Your Website

I’m sorry for the click-bait title, but this article is written just for you. Yes you! Why? Because you’re on this page. Most likely you’ve googled “Reasons to Use WordPress,” “Why should I use WordPress” or “Does WordPress Really Cure Cancer?” and you ended up here. Which means, you’re thinking about using WordPress for your website. And why wouldn’t you consider it? It is used by 33% of all websites.

Read more