Apr 28, 2025 • 3 min read
My real-world journey passing the AWS Certified Security – Specialty (SCS-C02) exam. Study strategies, mistakes, resources, and tips for future candidates.
Sep 17, 2025 • 5 min read
Amazon EKS introduces new monitoring challenges: pods, containers, audit logs, runtime threats. This guide covers AWS-native monitoring tools, open-source Falco integration, and best practices to secure Kubernetes workloads.
May 29, 2025 • 2 min read
This guide delves into the technical aspects of hardening EC2 instances, covering topics from instance selection to monitoring and automation, aligning with AWS's security recommendations.
May 4, 2025 • 5 min read
Learn how to run an effective incident response process in AWS using automation and forensic best practices — without needing a separate IR account.
Apr 21, 2025 • 3 min read
Detect and alert on AWS root account usage using CloudTrail, EventBridge, SNS, and optional Slack notifications. Step-by-step setup and Terraform included.
Apr 21, 2025 • 4 min read
Use IAM Access Analyzer to build least-privilege IAM roles in AWS — includes policy generation from CloudTrail, Terraform integration, and AWS best practices.
Apr 20, 2025 • 3 min read
Stop using IAM users in AWS. This guide explains why they're risky and how to migrate to Identity Center, STS, and OIDC-based access — step-by-step.
Apr 20, 2025 • 3 min read
A step-by-step checklist to secure your AWS account in 2025 — includes IAM hardening, S3 lockdown, logging, and budget alerts. Beginner to intermediate friendly.
Apr 19, 2025 • 4 min read
Five AWS misconfigurations still causing breaches in 2025 — includes fixes for public S3 buckets, over-permissive IAM, open security groups, and missing monitoring.
Apr 21, 2025 • 3 min read
Detect and alert on AWS root account usage using CloudTrail, EventBridge, SNS, and optional Slack notifications. Step-by-step setup and Terraform included.
Sep 17, 2025 • 5 min read
Amazon EKS introduces new monitoring challenges: pods, containers, audit logs, runtime threats. This guide covers AWS-native monitoring tools, open-source Falco integration, and best practices to secure Kubernetes workloads.
May 29, 2025 • 2 min read
This guide delves into the technical aspects of hardening EC2 instances, covering topics from instance selection to monitoring and automation, aligning with AWS's security recommendations.
May 4, 2025 • 5 min read
Learn how to run an effective incident response process in AWS using automation and forensic best practices — without needing a separate IR account.
May 4, 2025 • 2 min read
A downloadable AWS incident response playbook for small teams, including isolation workflows, evidence handling, and post-incident reporting guidance.
Apr 28, 2025 • 3 min read
My real-world journey passing the AWS Certified Security – Specialty (SCS-C02) exam. Study strategies, mistakes, resources, and tips for future candidates.
Apr 21, 2025 • 4 min read
Use IAM Access Analyzer to build least-privilege IAM roles in AWS — includes policy generation from CloudTrail, Terraform integration, and AWS best practices.