OT Security Blog

Introduction

June 9, 2025

Does anyone still maintain their own blogs anymore? This seems like a fools errand, and yet I have two goals:

  1. Write more about OT security. I believe I will learn more by producing more. I always feel the most knowlegeable on a topic when I have to either write about it or present on it. They say, "write what you know." But one of the great advantages of being sentient beings is being able to learn. I want to learn more about OT security and test what I already know. Writing about it seems like a good place to start.
  2. Learn a little web development. I don't know why I feel so strongly drawn to web development, but I am curious to know more and somehow have never taken the time to learn. I know basics from the late 90s/early 2000s when I should have had a geocities page, and I should have taken advantage of the random opportunities that came up. But I didn't, so here we are. I get bogged down doing things in an old, inefficient way, so here is a static page, written in a single html file by hand in a text editor (well, VS Code). In time, perhaps I will deploy a static site generator to maintain a blog.

Creating my own blog will hopefully let me accomplish both of these goals. This page will have minimal styling because it's just a test to see how cloudflare pages works.

Resurrection

March 11, 2026

I wrote this page and promptly forgot all about it. I did not achieve my goal for 2025 to pass the CISSP. I never wrote another word on this page. I maybe learned a little more web development, because I successfully added some authentication to the page. All I remember from that process was that I followed instructions on Cloudflare. They wanted you to install a CLI tool to do it, but this macos is too old, so I ended up using linux installed on a mac that was the exact same age. But the debian distro was up to date, so it worked. I've since nuked that by distro hopping (currently trying Mint), so now I wonder if I will have any trouble removing or changing that worker.

In any case, I would like to use this space to take some notes as I study for the CISSP. The plan has three components:

  1. Read the official study guide from start to finish. I say read, but I intend to blitz through to get the gist.
  2. Watch free YouTube video CISSP Exam Cram Full Course to test my retention of the reading blitz and highlight areas where I feel like I need to revisit.
  3. Take Practice Test that came with the Official Study Guide to see where I am actually at. Repeat steps above as needed.

Pete Zerger says he has a suggested study method, so I might also follow that. TBD.

 

Copyright © 2026 Scott Morgan