What have you changed with your own security posture?

Everyone is hacked...it's our daily IT news....
So, have you done anything about it? What have you improved on? Better social media security? Longer/complex passwords? Upgrade your firewall/router at home? Encrypting your own hdd's? Mobile device awareness (not jumping on free wifi, disabling bluetooth, AV), Password managers, Honeypot on your home network so you can see who might be attacking you, IPS/IDS installed, VPN on whenever you surf, Using proxies all the time, using a more "secure" browser, etc...etc...etc...
Tell me, it would be interesting to hear and learn new security methods.
cheers!
So, have you done anything about it? What have you improved on? Better social media security? Longer/complex passwords? Upgrade your firewall/router at home? Encrypting your own hdd's? Mobile device awareness (not jumping on free wifi, disabling bluetooth, AV), Password managers, Honeypot on your home network so you can see who might be attacking you, IPS/IDS installed, VPN on whenever you surf, Using proxies all the time, using a more "secure" browser, etc...etc...etc...
Tell me, it would be interesting to hear and learn new security methods.
cheers!
CompTIA A+, Network+, i-Net+, MCP 70-210, CNA v5, Server+, Security+, Cloud+, CySA+, ISC² CC
Tagged:
Comments
Companies get hacked because multiple that one individual by 10,000 and your chances someone screws something up somewhere is almost guaranteed.
- Password managers to mitigate password reuse
- Patching
- Don't click on random crap
- Low privilege accounts for everyday use
- Harden devices (encrypt, shutdown unused stuff, etc.)
- etc.
I lead an infosec team protecting very important stuff and have nothing fancy in my home network for prod. I only deploy tools on my lab so I can keep up to speed. My only concern at home is availability. I have automated most of my important backups to cloud destinations but currently working on figuring out a "dead man's switch" solution to ensure my family gets encryption keys and access to my stuff if I'm not around.
I do use 2FA whenever I can, don't reuse passwords, encrypt my information at home, regular backups, updates. Firewall/SIEM/IDS is just for fun.
Security Engineer/Analyst/Geek, Red & Blue Teams
OSCP, GCFA, GWAPT, CISSP, OSWP, AWS SA-A, AWS Security, Sec+, Linux+, CCNA Cyber Ops, CCSK
2021 goals: maybe AWAE or SLAE, bunch o' courses and red team labs?
Whatever goes through, we try to create a detection for it. A SIEM query, an IDS rule etc.
Man, that is THE tightest personal security posture!
This is what we do in the organization i work for... and again... we really strive towards achieving this..... Too difficult to find the perfect balance....
Sorry if i wasn't clear enough.... This is not my personal project....
- DR (local and cloud)
- Perimeter ( Firewall / SIEM / IPS / IDS, TLD blocking, guest network)
- Endpoint (multiple detection engine on all devices, encryption / remote wipe / localization on mobiles)
- 2FA & custom password management
...Quite a few things. Thankfully, the family is aware of things and embraced all that layering over time !
Studying for : TBD
My wife comes across 2FA when trying to access sensitive accounts of mine