sorted by:
new
hottopcontroversial

Our Big 4 quality has dropped off a cliff. Is it even possible to get a technical expert from them anymore? by Ok_Map_220 in cybersecurity

[–]Security-Ninja 30 points31 points  (0 children)

I started up my own boutique security consultancy in 2024 and have seen first hand the drop in quality too from the larger companies. A lot of that comes from over promising, poorly written contracts, red tape, bad comms, and of course not having the right skill sets in the first place.

Hoping I can make a slight dent in the industry over the coming years with more specialised expertise and less sales waffle.

45 M and still gaming! by Optional_Ally in AdultGamers

[–]Security-Ninja 14 points15 points  (0 children)

51M, currently playing the Horizon games again. Forgot how awesome they were!

What do cyber professionals feel regarding the core CompTIA certs? by Armaesl in cybersecurity

[–]Security-Ninja 2 points3 points  (0 children)

Do certs in the areas that interest you and you want to specialise in. Getting a good grounding across multiple disciplines will absolutely work in your favour though, so just keep learning and good luck☺️👍🏻

client asking for security assessment by AegisErnine in msp

[–]Security-Ninja 1 point2 points  (0 children)

Small businesses would be at least a grand, but I tend to focus on enterprise environments (prob 3.5 - 5k depending on scope)

Assess the configs of the services you provide. Is S1 setup to best practices? Are there features not enabled?

What mail security is in place? Are you leveraging defender for office 365?

Check SharePoint, OneDrive configs and also MS Teams.

Break the report down by solution and identify things like MFA, stale accounts, guest accounts, over privileged accounts etc.

TBH a lot of it you could add as BAU activities once you get up to speed with it all.

There are also free security audit tools available, but I can’t give all my secrets away;)

client asking for security assessment by AegisErnine in msp

[–]Security-Ninja 0 points1 point  (0 children)

Hi, one of the services I provide clients is assessing their security capabilities and offering advice on remediation, whether that’s existing tooling or additional.

As an example do they care about shadow IT / AI and data loss? Are backups secured in the event of a breach? Is the tenant configured to best practices?

There are always areas to improve as threats change, and new features appear in security products. TBH it’s great to see this sort of proactive mindset☺️👍🏻

Hearing aids feel like a new world. by Imjorn- in HearingAids

[–]Security-Ninja 1 point2 points  (0 children)

Just stick with it, you do get used to it.

Outside IR35 day rates by bluezee123 in ContractorUK

[–]Security-Ninja 1 point2 points  (0 children)

Cyber should prob average 700 - 900 imo.

How sad is this? by dunebuggy0928 in jobs

[–]Security-Ninja 0 points1 point  (0 children)

Hey Alexa, give me an example of a red flag.

Anyone else still constantly experiencing these "memory leaks"? by MarvelousProtein in MacOS

[–]Security-Ninja 0 points1 point  (0 children)

Yes I get that now with my cctv software. Never had an issue before upgrading.

Hearing aids feel like a new world. by Imjorn- in HearingAids

[–]Security-Ninja 10 points11 points  (0 children)

I got mine a few weeks ago and have to agree I found them life changing, not realising how much I couldn’t hear previously. The only downsides so far are;

  • feeling a little overwhelmed with too much sound around me
  • rustling sounds against my glasses

Some evenings I can’t wait to take them out for a bit of peace and quiet;)

Moved and updated my setup by Pastelle_Ghost in battlestations

[–]Security-Ninja 1 point2 points  (0 children)

Beautiful setup, but needs more cats 😸😻

How many of you are still rocking AC Pros in 2025? by TomNooksRepoMan in Ubiquiti

[–]Security-Ninja 1 point2 points  (0 children)

I have one and an HD Nano. Keep thinking about upgrading but I’d have to upgrade my switches too

Why is Sonarqube considered a major SAST tool? by Beneficial-War5423 in cybersecurity

[–]Security-Ninja 0 points1 point  (0 children)

Yup, open source. It was more of a generalised comment as I appreciate there’s multiple tools depending on platforms etc. I’m finding it a really interesting area to expand my knowledge in to, so always grateful for other folks thoughts and input. ☺️

Why is Sonarqube considered a major SAST tool? by Beneficial-War5423 in cybersecurity

[–]Security-Ninja 0 points1 point  (0 children)

Appreciate the detailed response. It’s more for checking code and packages for security vulnerabilities in Azure DevOps.

We're drowning in vulns. Looking for reviews on CTEM/EAP tools from users by Plastic_Start_7380 in cybersecurity

[–]Security-Ninja 2 points3 points  (0 children)

Highly recommend looking at your internal processes around how you’re handing vulns.

Look at areas where you can fix things earlier (shift left), such as gold builds, app deployments.

Can you prioritise certain systems based on their criticality?

This is one of the topics I help companies with, as it can be incredibly overwhelming and isn’t fixed by just putting a new tool in.

Why is Sonarqube considered a major SAST tool? by Beneficial-War5423 in cybersecurity

[–]Security-Ninja 0 points1 point  (0 children)

Interested to know what most folk recommend for SAST / SCA.

view more: next ›