blancos
Yo, I’m Brian Kimathi, a cybersecurity and IT systems enthusiast from Kenya, passionate about building secure digital environments and improving the world through technology.
With over 6 years of hands-on experience in system administration, cybersecurity operations, integrations, mobile money systems and more, I’ve worked on everything from securing backend infrastructures to helping companies respond to real-world cyber threats. My journey has taken me through diverse roles—system administrator at East African Data Handlers, privacy analyst at Techno Brain, senior systems analyst at Bowmans Law and tens of consulting roles..
Along the way, I’ve consulted on projects across the banking, telco, and social impact sectors. I enjoy getting my hands dirty with SecOps tools, system analysis, and threat response frameworks, but what drives me most is helping others understand and embrace the power of secure technology.
I hold a Bachelor’s degree in Computer Security and Forensics, certifications in networking and cybersecurity, and I’m currently exploring global opportunities in cybersecurity and infrastructure.
This blog is my little corner of the internet where I share security tips and tools, deep dives into IT systems and processes, stories from real-world projects, and mentorship advice for young professionals in tech.
If you're into tech, security, or figuring out this digital world you’ll feel right at home here.
Let’s connect, learn, and grow together.
Why Cloud Misconfigurations Threaten Your Business
Cloud misconfigurations are the leading cause of data breaches, yet most organizations focus on advanced threats instead of fixing basic security hygiene in their cloud environments.
The Human Factor in Cybersecurity Breaches
blancos -
Human error is the root cause of most cybersecurity breaches, and addressing it through training and awareness is more effective than relying solely on technical solutions.
Why Password Managers Fall Short in Modern Security
blancos -
Password managers are useful tools but not complete solutions for modern security, requiring a layered approach that includes multi-factor authentication and employee education to prevent breaches.
The Myth of Perfect Security
blancos -
Perfect security is a myth, and focusing on resilience rather than prevention can better protect your organization from inevitable breaches.
Why Traditional Passwords Are Failing Us
blancos -
Password fatigue from complex rules often causes more security breaches than weak passwords, requiring a shift toward user-friendly tools and behaviors.
Why Your Employees Are Your Best Security Defense
blancos -
Empowering employees with security awareness training often provides better protection than stacking more technology, turning human factors from a weakness into your strongest defense.
Why Most Security Awareness Training Fails and What to Do About It
blancos -
Security awareness training often fails because it focuses on knowledge rather than behavior, but shifting to a behavior-based approach can lead to better outcomes and fewer incidents.
The Myth of Multifactor Authentication Security
blancos -
Multifactor authentication enhances security but is not foolproof, as it can be bypassed through social engineering and technical exploits. Understanding its limitations and adopting stronger methods is essential for effective protection.
Why MFA Is Not Enough Anymore
blancos -
Multi-factor authentication is no longer a silver bullet for security as attackers develop new bypass methods, requiring a layered defense approach with phishing-resistant tools and continuous monitoring.
Why Phishing Still Works and What to Do About It
blancos -
Phishing remains a top threat because it exploits human psychology, not just technical gaps. Shifting focus to employee awareness and habits can build stronger defenses than relying solely on technology.
Rethinking Password Security
blancos -
Complex password rules often increase risk by encouraging poor habits. Learn how password managers and multi-factor authentication offer more practical protection for organizations of all sizes.
Why Employee Training Matters More Than Expensive Security Tools
blancos -
Small businesses can significantly reduce cyber risks by prioritizing employee training over expensive tools, as human error remains the primary cause of breaches.