Tuesday, 19 April 2016

Operation Cassandra

A couple of years ago, I blogged about Operation Irene, my effort to turn an old laptop into an "open source geospatial intelligence platform". This post is sort of like that... Sort of.

Let's review.

I worked a variety of jobs between 2006 and 2012, and really wanted to get into some sort of foreign policy analysis gig, but couldn't seem to break through. Between 2010 and 2012, I saved a ton of money (assisted in large part by a contracting gig in the Persian Gulf) and then spent fifteen months getting my master's degree in Scotland, where I graduated with distinction with an MSc in Strategic Studies (of the International Relations variety). (That's Scottish for "at the top of my class".) Despite this, and some other sweet credentials, it took me ten months of job applications and five interviews, tops, to get hired into basically the same job I was doing in 2010. I relocated to my current digs with the intent of eventually transferring or getting hired into something more commensurate with my background.

Fast forward nearly two years, and that plan has yet to pan out. I haven't gotten to the point of giving up on ever doing something related to strategy, but it appears that the foreseeable future shall be spent in information technology. So, in 2016, I need to shore those skills up so that I can poise myself to either get promoted here, or else generate opportunities to leave. Truth be told, if I'm going to be locked into IT work, I don't really feel the need to shackle myself to this particular locale. I need to open up some maneuvering room.

So, what to do? Well, the magic bullet seems to be the Certified Information Systems Security Professional certification from (ISC)². I think it may require a couple of other certifications to get me up to the point of being ready to test for it - the CAP and the repeatedly aforementioned PSP, to name but two. I've decided that I need to create some opportunities for hands on experiences on my own home network in order to force some of the more complex concepts to make more sense.

And thus, operation Cassandra, which is like Operation Irene ratcheted up to eleven.

I'm still making final tweaks to the overall plan, but I have it divided into five phases. In Phase 1, I'll be getting my existing equipment sorted. That means basic maintenance on my existing (more-or-less) twin laptops, and tightening up the settings on my home networking gear. Phase 2 will involve organizing my information, to include determining and then loading a "Hitchhiker's Guide" load on my original Kindle Fire. Phase 3 will focus on getting a bit smarter about home network engineering.

The initial phases get me ready for the heavy lifting in Phases 4 and 5. Phase 4 will involve setting up a home enterprise network composed of a set of four or five Raspberry Pi 3 boards configured as servers, and accompanying peripherals. I'm tentatively planning to figure out how to build a web server, a file server, a firewall and intrusion detection system, a GIS server, and potentially something involving shortwave radio. Phase 5 will involve using that home network, and particularly that GIS server, to learn QGIS. In addition to all of the hands-on training, I'd like to accompany the whole thing with the requisite documentation involved in the National Institute of Standars and Technology's Risk Management Framework, which is the federally mandated (and industry standard) framework for establishing, authorizing, and maintaining secure information systems. When all's said and done, I'll include the documentation, via the web and file servers.

If I can pull it all off, I'll have hopefully picked up some actual skills to accompany my existing theoretical understanding of some of these technologies; produced some functional work samples; and made some progress toward some of my personal and professional goals. It'll also get me started in the GIS field, in which I may pursue some formal certifications in the next couple of years.

I have a lot of work ahead of me. I'll try to chronicle each phase for the blog as I'm able.

No comments:

Post a Comment