Sign in Subscribe

Start here

Start here
Photo by Brian Matangelo / Unsplash

Welcome to my home in the ether. Thank you for signing up as a member to this site (What, you haven't yet? nudge, nudge).

Once you become a member, you will start receiving posts right in your inbox.

My name is Sripati and it has been 18 years since I started working; most of it is in information security (around 17 years).

Not everything was hunky-dory in this journey, however.

Praises, brickbats, warts, wounds, and all - that's my journey.

Who am I? And why I am blabbering about it, here, in public?

Because you should not make the same mistakes. You go make different ones.

This blog is a collection of posts, from my past to my present and future self. An observation of all things infosec around me.

However, it could also be useful for penetration testers, security auditors, security risk assessors, and decision makers.

This site is useful to you, if ...

  1. You are a pentester and want to know what other things you can do.
  2. You are a pentester and wonder how you can add value.
  3. You happen to be a security auditor and wonder if you could become a pentester and what it entails.
  4. You happen to be a pentester and want to know more about the allied areas in information security (e.g., auditing, risk assessment, being a CISO, etc.).
  5. You have been wanting to become a security auditor or a risk assessor but need a taste of what it entails.
  6. You want to make a switch into security.
  7. You want to understand infosec in a top-down manner.
  8. You want to know what this 'top-down' manner is all about.
  9. You want to be a CISO and want to read more about what it entails.

If you are a pentester, here are some posts.

I have observed security leaders and have gathered some tips. Here they are.

If you are auditor or risk assessor, here are some food for thought.

At the intersection of pentest, auditing, risk management and career advice. Musings based on real experiences, not theory. All infosec, mashed up.

I curate posts from this blog into a newsletter on both LinkedIn and Substack. While I would encourage you to try it out, I would really appreciate if you could subscribe to this site (which fuels those newsletters).

See you around!