Hi, I'm Dan. This blog documents my transition into IT, security, and technology risk, building on a background in financial risk and governance. Here you’ll find a mix of hands-on labs, system-level observations, and practical insights across identity, access, security operations, and risk management. Rather than focusing on tools alone, I aim to understand how technology, security, and business risk intersect in real-world environments. Think of this as a practical learning journal - bridging structured labs with real-world application, and sharing insights that are useful for both IT and security roles. If you like what you find, feel free to connect with me using the provided links!