Today turned out to be a productive step forward on two important fronts: preparing for federal job applications and continuing my Security+ training. One major requirement for the federal hiring process has now been officially taken care of, which means I’m one step closer to building a strong application packet. I also reviewed my resume and realized how important it is for everything on it to accurately reflect my real experience. I removed a few lines that didn’t match what I had personally done, because my goal is to keep my record clean, ethical, and fully honest. That matters not only for integrity, but also because federal applications rely on complete accuracy. Going forward, I’ll be rebuilding the resume in a way that highlights what I truly know and have done in IT and cybersecurity.
On the learning side, I completed Professor Messer’s Security Tools – SY0-701 (4.4) video, which covered enterprise-level tools like NGFWs, IPS/IDS, vulnerability scanners, SIEM systems, agents vs. agentless scanners, DLP, SNMP, NetFlow, and more. This material is part of my January 2026 Security+ plan, and the lesson helped me understand how large organizations tie everything together. Tools may describe the same vulnerability in different ways, but SCAP (Security Content Automation Protocol) helps unify the language so IPS, NGFW, scanners, and patching systems can all share the same identifiers. Benchmarks like CIS guidelines also help ensure systems are deployed as securely as possible, whether that’s disabling screenshots on mobile devices or validating cloud platform configurations.
From there, I reviewed SIEM operations (log aggregation, event correlation, and long-term analysis), the role of anti-malware platforms, and how DLP prevents the leakage of sensitive information through email, cloud storage, or collaboration tools. I also studied how SNMP monitoring works with MIBs and OIDs, how traps alert administrators to threshold changes, and how NetFlow identifies top talkers and application flows across a network. Finally, I looked at how vulnerability scanners operate—less invasive than penetration testing, but still able to find misconfigurations, outdated software, weak cryptography, or open ports. This rounded out a strong study session and gave me clear insight into how enterprise environments detect and process security events.
Think Positive Cyber 
Leave a comment