I passed the CISSP on April 6, 2026, at 100 questions. Here is a breakdown of my study timeline, resources, question practice, and exam-day experience.
Critical IOS XE vulnerabilities are being actively exploited, patch immediately. Click to read more
Chatbots and LLMs can follow instructions too well. Here's how malicious prompts bypass filters and what you can do
Writeup : my approach.
Why theoretical security fails in production, and how 'good enough' controls actually survive enterprise environments.
An overview of core security architecture principles, including defense in depth, zero trust, IAM, network segmentation, and compliance for designing secure systems.
A guide to Zero Trust architecture, explaining its core principles, why it's essential for modern security, and how to implement it with key technologies like IAM, MFA, and ZTNA.
An analysis of Zscaler's cloud security platform (ZIA, ZPA, ZDX) for large IT companies, covering its Zero Trust model, deployment, cost, and real-world use cases.
A comprehensive guide to firewall compliance, covering key standards like PCI DSS, ISO 27001, and HIPAA, and best practices for policy, change management, and auditing.
A practical look at AI's role in IT and cybersecurity, covering AIOps, threat detection, and a review of real-world tools like Microsoft Copilot, Darktrace, and more.
A practical comparison of the top Network Security Policy Management (NSPM) tools: Algosec, Tufin, and FireMon, focusing on their core strengths, use cases, and key differences.
A deep dive into firewall fundamentals, covering types (NGFW, Cloud), deployment strategies (Perimeter, DMZ), and best practices for hardening, logging, and rule management.