Security Concepts

Explainers written for a general audience — the same skill required for security-awareness training and onboarding.

Security is only useful if people understand it — that’s the premise behind this section. These posts take real incidents (Colonial Pipeline, the FBI/iPhone exploit chain) and everyday tools (password managers) and break down what actually happened and why it matters, for a non-technical reader. This is the same skill set behind security-awareness training.

  1. What Is a CSIRT vs. CERT vs. CIRT?
  2. What is a ‘NOC’? What is a ‘SOC’?
  3. How Was Colonial Pipeline Hacked/Breached?
  4. What is a password manager and why do you need one
  5. Post-Quantum Cryptography: The Race Is On
  6. Current Events Breakdown: the FBI/Australia iPhone “Exploit Chain”
  7. Metaverse security is a thing because security is still a thing
  8. Amazon’s “Sidewalk” Mesh Network Goes Live