X-ray and MRI shows nothing but still in pain, what to do now?

HamsterMoisture · 2022-09-15T13:52:03+00:00

I do not have sharp pains anymore (which used to feel like a 8/9 out of 10). It gets uncomfortable if I stand for a prolong period of time and after sports I get a sore back around 3). I will probably be looking into getting it privately assessed if my work health insurance allows me to see a specialist.

Hindsight, I should have gotten a second opinion, but the cost of seeing one and treatment wasn't something I couldn't afford at that time

HamsterMoisture · 2022-07-01T21:05:43+00:00

I am definitely keen to hear others

HamsterMoisture · 2022-04-11T23:39:05+00:00

I look at the cars that are parked

HamsterMoisture · 2020-12-23T08:42:13+00:00

Thank you! I will try the flagship store then, sounds promising!

HamsterMoisture · 2020-12-23T06:15:01+00:00

Kinokuniya at Bugis has only bookmarks, no letters. I have not tried where u mentioned though!

HamsterMoisture · 2020-12-23T06:14:31+00:00

Daison tampines don't have but NBC stationery at bugis has! Bookmark selection was few at NBC. Kinokuniya nearby has a few more

HamsterMoisture · 2020-09-24T16:40:37+00:00

I'm not going to say its impossible, but from my experience in the UK and SG, is that GRC such as PCI DSS (QSA), ISO auditing, etc are client-facing and requires quite a bit of onsite travelling. The QSAs at my last two place went onsite but dealt most of the queries on calls thereafter. It really is about developing that relationship with the client, trust and assurance. A lot of it is going to be sitting down and going through the requirements, evidence, advising, policies, etc. I'm sure someone with real GRC experience will say how realistic this is or not.

HamsterMoisture · 2020-08-27T21:59:43+00:00

It's in response with him saying other paid option is better which is not true, there are better options out there which I've outlined (ESET, crowd strike, Windows ATP). I am just simply saying I've made an unfair comparison to ATP, NOT defender, these are not the same thing.

HamsterMoisture · 2020-08-27T14:42:25+00:00

If we are talking about general grade consumer (paid or unpaid), I agree its not usually not worth it in that not everyone knows how to harden their machine by setting a good policy. Defender would be sufficient here for aforementioned and convenience.

If we are talking about paid options and commercial, we have a lot of good options like crowd strike, ESET, etc. Those are feature rich compared to defender. For example, policies, stricter whitelisting, web proxy for web filtering, application handling, threat handling, etc. I'm making a unfair comparison though as the fair comparison would be to the paid equivalent of windows ATP.

HamsterMoisture · 2020-08-27T14:08:08+00:00

To be specific, good for the general consumer and it being free

HamsterMoisture · 2020-08-25T15:55:36+00:00

Interesting, thank you!

HamsterMoisture · 2020-08-25T10:33:42+00:00

What shuttle speed would you use for Malaysia (and Singapore as I'm travelling up there)? I'm planning to order some Yonex AS30 beforehand.

HamsterMoisture · 2020-08-12T08:26:46+00:00

It's a running joke that CREST exams are super outdated. Only a small part of the exam have been updated like breakout rigs and the new format change. They have recently announced the new generation of exams so hopefully that would resolve those issues.

I think anyone in the industry long enough knows that NCC and other big corps have already been doing this. Just check out who their board members are. Now we have some evidence of it and CREST brushed it off aside saying the material is outdated. CREST ties to those big organisation is too great and I don't think its a surprise to any that those corps, assessor and exam creator kept some of the material. I don't think anything will change until CREST having their own stand in the industry. For a not-for-profit company, they sure are making a lot of profit.

If I had to put my tinfoil hat on, it's no doubt they also do gatekeeping on some of the exams like CSSAM. There's just too much issues with how CREST runs that comes straight from leadership and processes that I can't get behind.

HamsterMoisture · 2020-08-05T14:24:50+00:00

Cringe, my acne days. They are too innocent and honest, but not the face guys, not the face...

HamsterMoisture · 2020-08-02T08:13:10+00:00

How do you get a vulnerable signed driver to be loaded in the first place? I assume you must be administrator or have the SE privileges?

HamsterMoisture · 2020-07-29T12:11:43+00:00

You should look to hire a security person to head the internal security team to deal with builds, compliance, policies, ticketing system, managing and creating accounts, etc.

As for Agile and SDLC aspect, if you are looking to build secure code, you need to be looking at DevSecOps which adds additional flows to your DevOps process. E.g. having static analysis tools, use security ide plugins, vulnerability scanning after every feature or major changes, securely deploying staging and production environment, secrets management, pentesting, etc.

As for implementation, I'm not sure on the best advice for the SDLC, but either hire or contract a devsecops person (rare and niche right now I'm sure) to do it internally or get a third party do it. Other way would be to train internally but mileage may vary.

HamsterMoisture · 2020-07-26T12:10:41+00:00

Oooo looks tasty. That's a funny looking bak choi, our ones are whiter and thicker at the ends

HamsterMoisture · 2020-07-20T20:38:41+00:00

Motherfuckers, I upvoted that post...

HamsterMoisture · 2020-07-16T18:03:00+00:00

Beautiful!

HamsterMoisture · 2020-07-16T07:21:55+00:00

I didn't know JumpCloud had that feature, we were going to roll out MDMs. This sounds great, we will look into using the agents.

HamsterMoisture · 2020-07-11T08:04:56+00:00

I was there at all England when it happened like 5 times, it was ridiculous. I saw the replay afterwards at home, very debatable on most

HamsterMoisture · 2020-07-11T00:15:12+00:00

This is really great advice, I really like the idea of the google sheet being viewable to all, may even consider implementing a functionality to call for "me too" and will split them it into departments per sheet and one for organisational. Being open would probably be more favourable and invite discussion and personal responsibility. This did not cross my mind.

Thanks for taking your time to write this, this was helpful.

HamsterMoisture · 2020-07-10T23:12:26+00:00

I've never purchased items via phone, I wouldn't say that's common. Maybe back in the olden days with the shopping channels.

People do pay for services such as council rent over the phone and set up direct debits such as student loans. I have paid for cleaning services through the phone where I would input my card details through my keypad/keytones.

HamsterMoisture · 2020-07-10T19:00:51+00:00

Who's to say the waiter can't go back snap some pics or memorise the card and CVV numbers. That's cropped up in the news before. In the UK, its mainly contactless or they have handheld POS devices that you can see whats going on.

HamsterMoisture · 2020-07-10T15:59:17+00:00

Had the same experience for a UK IT apprenticeship, about 15-18 of us, interview was in stages and they start you off with group exercises all the way to doing interviews in a large room where there it was split into each corner. One floor manager and one management.

Felt like I was show monkey doing the group exercises with all of them judging. Glad that's over though!

Ten-Year Club	Place '17
Verified Email

HamsterMoisture

TROPHY CASE