Ryan G. Cox – Medium

Ryan G. Cox

Published in

Understanding the Full Spectrum of Threat Indicators

If you’ve spent more than a day in cybersecurity, you’ve definitely heard the phrase Indicators of Compromise, or IOCs, thrown around.

Sep 24

Understanding the Full Spectrum of Threat Indicators

Sep 24

Cloud Security Fundamentals: IAM, RBAC, PoLP, and more…

We’re no longer “moving toward” the cloud. We’re already here.

Sep 3

Cloud Security Fundamentals: IAM, RBAC, PoLP, and more…

Sep 3

Published in

How to Actually Leverage the MITRE ATT&CK Framework in Security Operations

The MITRE ATT&CK Framework is one of the most recognized and most referenced knowledge bases in the blue team community. And for good…

Aug 13

How to Actually Leverage the MITRE ATT&CK Framework in Security Operations

Aug 13

Published in

The Playbook for Playbooks

No, they’re not the flashiest part of Security Engineering. But if you want a scalable, world-class Security Operations function, they’re…

Jul 27

The Playbook for Playbooks

Jul 27

Tuning Detections isn’t Hard Unless You Make it Hard

Detection Engineering is an underappreciated role in cybersecurity.

Jul 24

Tuning Detections isn’t Hard Unless You Make it Hard

Jul 24

Published in

Security Engineer Starter Guide: Security Operations

If you’re looking to break into the blue team side of cybersecurity…

Jul 11

Security Engineer Starter Guide: Security Operations

Jul 11

Published in

5 Lessons Learned as Incident Commander of the Biggest Security Incident of My Career

I’ve been working in Detection and Incident Response for over half a decade now.

Jun 18

5 Lessons Learned as Incident Commander of the Biggest Security Incident of My Career

Jun 18

Published in

My Log Source-Agnostic Methodology to Understanding Big Data

After writing about my SIEM-Agnostic Approach to Detection Engineering, I realized I had to skip over a critical piece to stay on topic.

Jun 5

My Log Source-Agnostic Methodology to Understanding Big Data

Jun 5

Published in

Cyber Chat: Page Glave

Pivoting careers. Panther + Scanner is the optimal stack. Day-to-day as a Detection Engineer. And more…

May 21

Cyber Chat: Page Glave

May 21

Published in

Email Security: The Basics of Protecting Your Organization & Yourself

Email has been around for forever. Its invention is often credited to Ray Tomlinson, who in 1971 sent the first message using the…

May 15

Email Security: The Basics of Protecting Your Organization & Yourself

May 15

Ryan G. Cox

Ryan G. Cox

Get articles a week early by subscribing for free to The Cybersec Café newsletter: https://www.cyberseccafe.com/

Help

Status

About

Careers

Press

Blog

Privacy

Rules

Terms

Text to speech