Menu

About

Welcome to Idlethreat

Hi, There.

Amazing that idlethreat has been around for a decade already. Got a little tired of the care-and-feeding involvement when it came to using WP, so I changed things up a little and went with a static documentation generator, instead.

Of course, there's still megatons of data left on the old site that will need to get reviewed, migrated, and cleaned up. In the meantime, I'll stick with this implementation and see where it gets me.

Professionally, I've been spending a whole lot of time getting involved with the superb Graylog. So, a lot of my current posts involve working with it. If you have the time, stop by /r/graylog. I spend a lot of time in that direction as well.

In any case, enjoy the visit.

tom


About Idlethreat

I profoundly dislike about pages. You either write too much and seem to be stuck on yourself, or you write too little and can be mistaken for a robot. I'm neither, so, there's that.

I've spent the better part of the last decade working as a Compliance / Security Engineer for a few different companies. Compsec has allowed me to implement a number of fascinating technologies in innovative ways to solve security problems.

The majority of my technical experience revolved around enterprise-level implementations of various technologies. You don't have one RSA server, you have a multi-tennant cluster. You don't have one Snort IDS, you have 35 separate instances spanning 4 continents. You don't have one Spunk server, you have 6 indexers, two search heads with high-availability failover configuration.

It's a lot more difficult, but it's a whole lot of fun trying to apply technologies in strange new ways to meet company demands. Some people find entertainment in solving difficult problems with impossible deadlines and meager resources. I happen to be one of those people.

Platforms

  • Windows Server (All)
  • Linux Server (All)

Products

AAA

  • RSA SecureID

NIDS

  • Snort IDS
  • Imperva WAF
  • Ntop

HIDS

  • Tripwire
  • CimTrak

Logging

  • Splunk
  • Graylog

Security Scanning

  • Qualys
  • Nessus
  • Openvas

Compliance

  • HIPAA
  • PCI
  • SSAE-16

Programming

  • Bash
  • Python
  • Perl
  • PHP
  • Powershell
  • SQL (MSSQL and MySQL)

Technical Writing

  • Designed and wrote enterprise-level change control process for one company
  • Assisted with and wrote most of the company policies for two separate companies
  • Designed and implemented internal auditing procedures for PCI and HIPAA compliance
  • Wrote operational training manuals for two companies

Contact

I'm available at tgiles at echoforest dot org

License

All code, documentation, examples and errata are released under the Creative Commons Attribution 4.0 International license. Read the license. Know your rights.

All blog posts, about pages, and other data created by me are licensed separately. You probably don't want it anyway.