Knowledge Hub

Practitioner-grade cybersecurity content

Technical playbooks, war stories, and how-to-think guides — written by practitioners, anchored to the Indian context.

Want structured, step-by-step learning instead? Explore the Academy (guided courses) or the AI security hub.

Latest articles

Most recent practitioner playbooks across every track. Filter by topic in the sidebar, or use search.

Module 9 · Zero Standing Privilege and Just-in-Time Access

The principle Traditional model: 100 admins, each with persistent admin rights. Attacker compromise of any admin = persistent privileged access. Insider threat…

May 14, 2026 · 3 min read

Academy

Module 8 · Customer Identity (CIAM) — Scale, Fraud, KYC

CIAM vs workforce IAM — the differences Dimension Workforce IAM CIAM Scale Thousands Millions to hundreds of millions Onboarding HR-provisioned Self-service registration…

May 14, 2026 · 2 min read

Academy

Module 7 · Identity Governance — Lifecycle, Access Reviews, SoD

What IGA covers Lifecycle management: joiner, mover, leaver workflows. Access provisioning: who gets what, on what basis. Access reviews / certification: periodic…

May 14, 2026 · 3 min read

Academy

Module 6 · Privileged Access Management — PAM Architecture and Operations

What privileged accounts cover Domain Admin / Enterprise Admin (Windows AD). Root / sudo on Linux servers. Database admin (DBA) for production…

May 14, 2026 · 3 min read

Academy

Module 5 · Federation at Scale — SAML, OIDC, SCIM Patterns

The three protocols Protocol Purpose SAML 2.0 Browser-based SSO; enterprise standard since 2005 OIDC (OpenID Connect) SSO on top of OAuth 2.0;…

May 14, 2026 · 3 min read

Academy

Module 9 · Privacy Engineering Beyond Compliance

Why this module exists. “Privacy by design” is a phrase in every privacy framework and a practice in few organisations. The shift…

May 14, 2026 · 4 min read

Academy

Module 8 · Data Masking, Tokenisation, Pseudonymisation

Why this module exists. “Use real production data in development” is the line that produces audit findings and breaches. The alternatives —…

May 14, 2026 · 4 min read

Academy

Module 7 · Data Discovery and Classification — Automated Approaches

Why this module exists. Manual data classification fails. Survey-based “where is sensitive data” produces inventories that miss 40-60% of actual locations. Modern…

May 14, 2026 · 3 min read

Academy

Module 6 · Encryption Strategy — At Rest, In Transit, In Use

Why this module exists. “We encrypt everything” usually means “we encrypt some things at some layer, with key management we haven’t audited.”…

May 14, 2026 · 3 min read

Academy

Module 5 · DLP at Scale — Endpoint, Network, and Cloud

Why this module exists. Indian enterprises commonly buy DLP licences and never tune them effectively. The deployment runs in monitor-mode forever, alerts…

May 14, 2026 · 4 min read

← Newer 1 … 13 14 15 16 17 … 91 Older →