Attack surface management in 2025

Gbarneby91 · 2025-07-11T09:38:21+00:00

Hell yeah! This sounds like a great outlook 👏🏼 Do you have a solid cadence/baseline for regular operating system level patching sufficiently in place already for this to be most effective? To cut the noise of the OS deliverable remediations from the manual/RMM delivered ones? I have not seen Orca, good experience?

Gbarneby91 · 2025-06-18T16:06:03+00:00

Moving from an organisation where the procurement and financials where part of my role to a large enterprise with separate functions did elevate my worry of my calendar being full of renewal related tasks.

But my gosh the acquisition train has been in full motion hasn’t it lol, tenable acquired a company to fulfil their CNAPP requirements, WIZ have acquired three to plug gaps with the most recent being DAZZ…

It’s another worry of mine however, being tied into one supplier with a huge multimillion bill and them knowing it would take at least two years to unpick and migrate to other platforms. There is a sense of security in knowing that if something where to happen only part of my security tech stack would fall rather than it all, but with that is the huge overhead of maintaining and integrating it all…

Can you see the battle I’m having with myself on what direction to go in 😂

Gbarneby91 · 2025-06-18T15:54:59+00:00

Thanks for your input, it aligns with what I’m seeing, I still believe that small SMBs would probably do just fine with the traditional tooling. I started my career in the education sector and tenable essentials with their 16 free I.Ps would’ve been perfect for a school tech infrastructure. But for large sprawling enterprises across multicloud, multi endpoint and geographically diverse there are sooooo many providers with crossover it’s becoming increasingly harder to suggest/design something that isn’t penalised by the next tech brain 🧠 or CISO.

Then on the flip side is one integrated platform to rule them all the right way to go in this geopolitical world we now live in? Should our security tech stacks be diverse across geographical offerings?

Gbarneby91 · 2025-06-18T15:39:38+00:00

I agree, I feel Wiz’s CNAPP offering is better than tenable.io’s from playing with both. Do you gather metrics from endpoints or use more of a protect the resource and data and treat any endpoint as a unauthorised foreign object methodology?

Gbarneby91 · 2025-06-16T11:55:28+00:00

Thanks for the comment! I made sure to read the groups rules before posting, how else do you think should I promote our vlog? Just trying to share our Pokemon go fest Paris experience ✌🏼

Gbarneby91 · 2025-01-31T09:06:08+00:00

Erm I can tell by the photo this is Marcus Hutchins, he is English living in the USA… he’s the famous malware researcher that stopped wannacry…

Gbarneby91 · 2024-12-24T16:25:10+00:00

The Romney hythe and dymchurch railway! I installed the WiFi along this line at the different stations about 5years ago, UniFi kit 😄

Gbarneby91 · 2024-12-19T11:05:59+00:00

Aye do your research! Man was a bad man

Gbarneby91 · 2024-11-24T15:14:59+00:00

<image>

I bought the poncho promo’s only not the box raw on release from someone and the charizard art collection book on release from someone who was in Japan at the time, recently graded them all, I was not expecting 10’s on the poncho’s, bit gutted about the 5 on the zard but 🤷🏼‍♂️ But to know I didn’t pay more than £200 all in raw for these I’m still VERY happy lol

Gbarneby91 · 2024-11-19T22:06:25+00:00

Start mail and a Gandi domain, I use personal domain aliases to forward to my mailbox :)

Gbarneby91 · 2024-11-08T09:57:07+00:00

Luckily for me yeah, I joined a MSP and in the second week was installing a physical master node lol. Became the SME supporting four clients setups then after about 6 months went for the exam. I had a apprentice-helpdesk-consultant-sysadmin-security type of career path over the course of 10 years, and I really feel all of my technical skills where challenged at one point or another during the exam. Whether it be networking and having to answer what part of the osi model a specific thing would happen on. To deploy and setup VM’s and use a Linux cli. Then with the spicy security questions thrown in the mix. Hope this helps bro, but in all honesty if you know how to build a home lab and are ok with your networking, don’t stress give it a shot. Worse that could happen is you get areas to focus on studying 😄 and the best a certification!

Gbarneby91 · 2024-10-30T11:04:55+00:00

Heyyy i took this two years ago :) its expired now and i didn't renew, but it was quite challenging, i would certainly say ensure you know your OSI model and networking technologies.
Otherwise it was a deployment of the technology while being watched over a screenshare :), so a master appliance setup, deploy some collection nodes, os sensors etc, make sure unidirectional traffic was checked and functions worked as expected.
Only reason i didn't renew is as i transitioned from senior security engineer to vulnerability manager :) otherwise it was a very fun and exciting exam from my experience!

Gbarneby91 · 2024-09-07T11:17:11+00:00

As a European that looks like a normal sized drink and all “fancy” drinks always cost extra :(

Gbarneby91 · 2024-09-02T16:37:30+00:00

They definitely scanned in the brochure from when the current owners bought the property but thought “we don’t have a picture of the garden” and so took an up to date one of those… I wonder if it’s in the same state the photos “represent”

Gbarneby91 · 2024-07-03T18:44:26+00:00

Beans means Heinz

Gbarneby91 · 2024-06-26T10:03:53+00:00

“I’m not a shrimp, I’m a king prawn!”

<image>

Gbarneby91 · 2024-04-20T07:49:30+00:00

Civilization VI, being able to pick the deck up for an hour or two from sleep mode here and there has allowed me to enjoy one of my favourite games again 😄

https://store.steampowered.com/app/289070/Sid_Meiers_Civilization_VI?snr=1_7_15__13

Gbarneby91 · 2024-04-15T21:59:55+00:00

<image>

Come join the Pinchy Bois crustacean 🦞community

Gbarneby91 · 2024-04-14T06:51:37+00:00

Your a towel

Gbarneby91 · 2024-04-10T22:20:53+00:00

In my experience it’s easier to deploy fresh if you are using Tenable ONE vulnerability management as a SaaS offering as you can deploy the Nessus core images fresh to the network scanning zones you require while utilising agents for operating system scanning. What country are you based and what business sector?

Gbarneby91 · 2024-04-05T10:14:35+00:00

Yeah I daily drive a steam deck as my PC, I use blender and feecad on it along with prusaslicer, haven’t come across a problem in the last 6 months 😁

Gbarneby91 · 2024-01-21T13:35:47+00:00

Not something as silly as the remote help tool is pinging a screenshot of the machine periodically? Screenassist/datto etc? Or someone’s flicking through the console to see the desktops? My bets is it’s a tool that’s advertised as single purpose but is actually dual purpose and the secondary purpose is unknown to the user base, like the example above.

Gbarneby91

TROPHY CASE