I have been an IT penetration tester and IT security consultant for all my professional career of 30+ years. Being a "hacker" (not the malicious kind), learning about new technologies is more a way of life than a profession. In my spare time, I'm also running my own internet infrastructure built on FreeBSD and I have been an early adopter of technologies like DNSSEC, DANE, DMARC, MTA-STS, and the likes, resulting in top scores for security.
Understanding these technologies is, in my eyes, crucial to be able to test the security of them. Just running some tools might be enough to satisfy compliance requirements. However, real security needs testing. I would go so far as to say that blind faith in compliance can be dangerous for security. I can recommend watchin the lecture "How Compliance Is Hurting Security" by Roger Grimes.
Client Feedback
XXX
Finding Rationality in Technological Nebulosity (FRTN) B.V.
KvK Eindhoven 17148801
VAT ID NL811014496B01
NO AI TRAINING: Without in any way limiting the author’s exclusive rights under copyright, any use of this publication to “train” generative artificial intelligence (AI) technologies to generate text is expressly prohibited.