Timeline

I write, I break things, I write some more.

Multi-Tool Container Security Scanning with AWS Integration

2025-09-11 00:00

Building a container security scanner using Trivy, Grype, and Snyk with AWS ECR and EKS deployment automation

container-security devsecops aws kubernetes trivy grype snyk

Implementing and Securing OWASP Juice Shop with AWS WAF

2025-09-05 15:00

AWS security engineering project implementing OWASP Juice Shop on ECS Fargate with AWS WAF protection, Terraform IaC, real-time Athena analytics, CI/CD security pipeline, and emergency response

AWS WAF Security OWASP Terraform DevSecOps Infrastructure CloudWatch Athena CI/CD

Building Resilience Through Chaos Engineering on AWS EKS

2025-09-01 04:22

Chaos engineering practices using Chaos Mesh on Amazon EKS to build more resilient cloud-native applications

AWS EKS Kubernetes Chaos Engineering DevOps Resilience Site Reliability Cloud Native Infrastructure Tutorial

AWS Secrets Management

2025-08-25 23:40

AWS secrets management solution with Infrastructure as Code, cost optimization, automated rotation, and monitoring

AWS DevSecOps Security Infrastructure Terraform Secrets Management Tutorial

Inspector to SSM Vulnerability Patching Automation

2025-08-12 22:30

That simple vulnerability patching pattern everyone shows? It doesn't work when you use it.

AWS Inspector SSM Automation Vulnerability Management EventBridge

AWS CLI Security Commands

2025-07-21 15:40

I've used these commands to catch everything from wide-open S3 buckets to overprivileged IAM roles. Here's your practical guide to AWS security auditing that comes in handy.

AWS CLI Cloud Security DevSecOps Security Audit IAM

Secrets Management in Go Applications From Environment Variables to Vault

2025-07-12 12:25

The irony is that Go makes building secure applications relatively straightforward, but its simplicity can be deceptive when it comes to secrets management.

Secrets Management Secure-Coding GO

Building an IaC Security Scanner in Go

2025-07-09 15:20

As a security engineer who's implemented security controls across cloud environments, I've always been curious about how policy engines actually work under the hood

Iac terraform OPA GO

Monitoring Tells You It’s Broken; Observability Tells You Why

2024-09-20 19:45

Most organizations think they have observability when they really just have expensive monitoring. What is the difference and why it matters for both DevOps and security teams.

Observability Monitoring DevOps Security Operations SRE

Are You Dyslexic? A Security Engineer's Late Discovery

2024-07-13 16:45

I spent years thinking I was just 'not a good reader' until a casual conversation led to a diagnosis that explained everything. Here's how dyslexia shapes my approach to learning and career in tech.

Dyslexia Learning Career Tech Neurodiversity

Why My Database Disappeared and How Docker Volumes Fixed It

2024-03-20 10:05

When working with Docker, one of the biggest questions you'll run into is: 'How do I store data in a container without losing it when it stops?'

Containerization docker-volume

When Containers Multiply Like Rabbits and You Need a System

2024-02-20 18:00

We solved the 'works on my machine' problem by packaging applications in containers. But success creates its own challenges. What happens when you're running not just one container, but hundreds? Or thousands?

Containerization k8s software development

Containers Changed Everything and I Wish I'd Started Sooner

2024-02-15 18:00

Remember when deploying software meant crossing your fingers and hoping it would work on the production server? When 'but it works on my machine' was the most dreaded phrase in tech? Those days are fading fast, thanks to a technology that's quietly revolutionizing how we build and ship software: containers

Containerization Container Engine software development

How a Bank Fixed Their Security Nightmare With Defense in Depth

2024-02-10 16:00

Let's takes you inside real organizations implementing Defense in Depth strategies, revealing what works, what doesn't, and what you can apply to your own cloud journey

Defense in depth Cloud Security AWS

Why One layered defense Never Works and What Does

2024-01-19 16:00

The Defense in Depth is beautifully simple: never rely on just one defense. Instead, create multiple safeguards that work together. If one fails, others are ready to step in.

Defense in depth Cloud Security AWS

Separation of Concerns vs Least Privilege: Why They're Not the Same (and How to Use Both)

2023-07-14 14:30

Two fundamental principles that sound similar but serve completely different purposes in cloud security. Here's why the distinction matters

AWS IAM Security Architecture Best Practices

Published Elsewhere

Articles I've published on other platforms

From Theory to Practice: Automating AWS Security Finding Remediation with GENAI

Medium Dec 15, 2024

Exploring how GenAI can automate AWS security finding remediation in practice.

AWS Security GenAI Automation

Automating PII Detection and Response in AWS S3 with Amazon Macie, Lambda, and EventBridge

Medium Nov 20, 2024

Building an automated PII detection and response system using AWS Macie, Lambda, and EventBridge.

AWS PII Macie Lambda EventBridge Security

Passing AWS DevOps Engineer Pro (DOP — CO2) Tips and Notes

Medium Oct 15, 2024

Comprehensive tips and notes for passing the AWS DevOps Engineer Professional certification exam.

AWS DevOps Certification DOP-C02 Study Guide

Secure Lambda Blue Green Deployment

Medium Sep 10, 2024

Implementing secure blue-green deployments for AWS Lambda using Jenkins, CodeDeploy, and integrated CI/CD practices.

AWS Lambda Blue-Green Deployment Jenkins CodeDeploy CI/CD