Blueprints
Documents
Events
Published Books
About Me
Video

Meeting of Brilliant Syche – IT Pro's Corner

Search for:

Home
Books
Events
Publications
Video
Documents
Blueprints
About Me

Category: CDR – Cloud Detection and Response

SOAR Playbook for Cryptojacking

August 19, 2025 Shuvro

Reading Time: 8 minutesThis blueprint outlines a comprehensive Security Orchestration, Automation, and Response (SOAR) playbook to combat cryptojacking—the unauthorized use of computing resources for cryptocurrency mining. Cryptojacking poses significant financial, operational, and reputational risks by silently consuming CPU cycles, increasing power costs, degrading system performance, and introducing hidden vulnerabilities.

AI - Artificial Intelligence, C2, CDR - Cloud Detection and Response, Cryptojacking, CSPM - Cloud Security Posture Management, CWPP - Cloud Workload Protection Platforms, GPU, GRC, Identity & Access Management, MITRE, ML - Machine Learning, MTTC - Mean Time to Contain, MTTD - Mean Time to Detect, MTTI - Mean Time to Investigate, MTTR - Mean Time to Resolution, NIST, Playbook, SIEM, SOAR, TIP - Threat Intelligence Platform, TTP, XDR

Auditor Became CISSP – Never Performed in Projects & in IS Development, Would You Hire Him for Your Infrastructure Platform Management? Can or Should that Knowledge Gap be Admissible?

August 1, 2025August 1, 2025 Shuvro

Reading Time: 6 minutesStatus: Final Blueprint (Summary) Author: Shahab Al Yamin Chawdhury Organization: Principal Architect & Consultant Group Research Date: June 1, 2024 Location: Dhaka, Bangladesh Version: 1.0 1. The Core Dilemma: Assessor vs. Builder Mindset We are observing worldwide adoption on CISSP Read More …

Agentic AI, AI - Artificial Intelligence, AI Agents, AI Governance, API, Application Development, Application Platform, Architecture, Artificial Intelligence, Attack Simulation, Audit, Backup, BAS - Breach and Attack Simulation, BCP - Business Continuity Plan, BI Analytics, BIA - Business Impact Analysis, Blockchain, BOK - Body of Knowledge, Business Architecture, C2, CCM - Cloud Control Matrix, CDR - Cloud Detection and Response, CI/CD, CIEM - Cloud Identity Entitlement Management, CISECURITY, CISO, CLM - Certificate Lifecycle Management, Cloud Access Security Broker, CNAPP - Cloud-Native Application Protection Platform, Compliance Framework, Control Framework, Critical to Quality, CSNS - Cloud Service Network Security, CSPM - Cloud Security Posture Management, CTEM - Continuous Threat Exposure Management, CTI - Cyber Threat Intelligence, CVSS, CWPP - Cloud Workload Protection Platforms, Cyber Maturity, Cybersecurity, Data Governance, Data Lakehouse, Data Privacy, Data Protection, Data Quality, DDoS, DevOps, Disaster Recovery, DLP, DNS, DSPM - Data Security Posture Management, Encryption, Enterprise Architecture, FIM - File Integrity Monitoring, Frameworks, GDPR, GenAI, Governance, GRC, HSM - Hardware Security Modules, Hunting Maturity Model, IaaS - Infrastructure as a Service, Identity & Access Management, Incident Response, Insider Threat, IO Model, IS - Information Security, ISO/IEC 22301, ISO/IEC 27001, ISO/IEC 27031, IT - Information Technology, IT Governance, IT Infrastructure, IT-CMF, KMS, KSPM - Kubernetes Security Posture Management, Kubernetes, Large Language Models, Machine Identity Management, MCP - Model Context Protocol, MITRE, ML - Machine Learning, Networked Devices, Networking, NIST, OSINT, PaaS - Platform as a Service, PAM - Privileged Access Management, PCI-DSS, PDCA, Penetration Testing, Phishing, Planning, Policy, PoLP - Principle of Least Privilege, PQC - Post-Quantum Cryptography, Private Cloud, Productivity, Program Management, Project Management, Public Cloud, RAG, Ransomware, SecOps, Security Operation Center, Systems Security Engineering

CnAPP – Cloud-native Application Protection Platform for Your Enterprise

July 29, 2025 Shuvro

Reading Time: 4 minutesThe enterprise migration to the cloud has dissolved the traditional network perimeter, creating a complex and dynamic attack surface.

CDR - Cloud Detection and Response, CIEM - Cloud Identity Entitlement Management, CNAPP - Cloud-Native Application Protection Platform, CSPM - Cloud Security Posture Management, CVSS, DevOps, KSPM - Kubernetes Security Posture Management

Cloud Attack Patterns That Reveal About Adversary Strategy

July 27, 2025July 27, 2025 Shuvro

Reading Time: 4 minutes Adversaries no longer focus on breaching a hardened network border; instead, they target the very fabric of the cloud—its identities, configurations, and APIs.

CCM - Cloud Control Matrix, CDR - Cloud Detection and Response, CIEM - Cloud Identity Entitlement Management, Cloud Access Security Broker, CNAPP - Cloud-Native Application Protection Platform, CSPM - Cloud Security Posture Management, CWPP - Cloud Workload Protection Platforms, Identity & Access Management, Machine Identity Management, Private Cloud, Public Cloud

YouTube

http://www.youtube.com/user/shuvromcse

Monthly Archives

MOBS Calendar

September 2025
S	M	T	W	T	F	S
	1	2	3	4	5	6
7	8	9	10	11	12	13
14	15	16	17	18	19	20
21	22	23	24	25	26	27
28	29	30

« Aug

Creative Commons

The opinions and views expressed in this blog are those of the author and do not necessarily state or reflect those of any vendor's regardless of hardware or software.

All contents is provided "AS IS" with zero warranties and warnings, and confers no rights. You assume all risk for your use.

All the Trademarks are the property rights of their respected owners.

NOTE: Please be aware I get lots of emails, and I cannot assist and fix everyone's problems. Also, please do not be offended if you do not get a response.

Testimonials

Shahab is a very detail person and constantly striving to help customers to achieve the best value.

Kenneth Ng Sin KwangTechnical SpecialistMicrosoft MalaysiaMalaysia

Shahab is a thorough tech analyst who has made impact in Public Sector accounts while discussion went from opportunity creation to a maximization of technology utilization and value proposition.

Ahsan SharifPS DirectorMicrosoft BangladeshDhaka, Bangladesh

Shahab have been hugely extending his hands to Nepal market support apart from his daily duty of Bangladesh Sub with his deeper knowledge in various Microsoft technology to many of our customer and is really adding value to Nepal business

Deependra BajracharyaPartner Sales ExecutiveMicrosoft NepalNepal

Shahab is an extra-ordinarily productive specialist on Microsoft’s server tool business. He is an exceptionally brilliant problem solver when it comes to designing solution architectures and developing infrastructures & deployment models.

Tanzim SaqibDeveloper EvangelistMicrosoft BangladeshDhaka, Bangladesh

I am working closely with Shahab for a little more than 3 years, and I know him both in professional and personal capacity. Shahab amazed me with his integrity, trust, and unbelievable depth of Technological facts. I have never met anyone so competent in his/her profession. Shahab upgrades himself continually and I am so lucky to meet such a rare gentleman. He would be an asset to any organization who has engaged Shahab for his experience.

Ismail Jabih UllahHead, Org Development & TrainingLink3 Technologies Ltd.

Shahab, Your site is really fantastic. Contents compilation are awesome. Thank you very much for saving my time.

Khandaker AnwarAB Bank LimitedDhaka, Bangladesh

He is a proactive and tireless contributor who would make a great addition to any team. He is technologically very sound and I would highly recommend him for any technical position, as he naturally rises to the occasion when presented with something he is passionate about.

Sarana IslamBusiness DevelopmentOracleSingapore

Shahab is the most technically sound guy I ever had the opportunity of working with.

Sabeel RahmanAccount Manager, EPGMicrosoft BangladeshDhaka, Bangladesh

An extremely knowledgeable person in his field of work. He takes learning and applying new technology at work as a continuous process. A problem solver within a given period of time and cost. I wish him all the best.

Wahidur Rahman Khandkar

Twitter

Tweets by ShahabAlYaminCh