Why this blog

At SCRTY I spend my days on IT operations and security. A lot of what we learn along the way (sometimes after an incident, sometimes after three cups of coffee and a whiteboard) deserves a wider audience than just our customers and my own notebook. Hence this blog.

What you’ll find here

A few recurring themes:

  • Knowledge sharing. Short pieces on patterns we keep running into, in detection engineering, governance, cloud hardening. Not marketing prose; concrete, usable notes.
  • Security research. Original work: vulnerabilities we come across, tooling we build, analyses of public incidents. Done responsibly, with disclosure commitments respected.
  • Lessons from the field. Anonymised post-mortems, design choices, and the reasoning behind them, including the calls we’d make differently in hindsight.
  • Tooling notes. Short snippets (shell, queries, configs) that save somebody else an afternoon.

Style

Brief where I can be. Deeper where the topic warrants it. Both languages (Dutch for the local reader, English where the topic is more international). I write in a personal voice; not everything here is automatically SCRTY policy, but everything is considered.

Get in touch

Feedback to info@scrty.nl. Got a topic you’d like to see covered, a correction, or a source that belongs here? Let me know. A blog that only broadcasts is a newsletter; I’d much rather hear back.

Norbert

← Back to the blog index