Stop Using Access Keys: AWS Temporary Credentials Done Right

Ditch long-term access keys. Practical guide to IAM roles, STS, and temporary credentials — with real mistakes to avoid and least-privilege patterns that work.

May 11, 2025 · 4 min · 790 words · Javier Pulido

AWS Incident Response Guide for Small Security Teams

Run effective incident response in AWS with automation and forensic best practices. Free playbook template included — no dedicated IR account needed.

May 4, 2025 · 5 min · 939 words · Javier Pulido

AWS Incident Response Playbook Template (Free)

A downloadable AWS incident response playbook for small teams, including isolation workflows, evidence handling, and post-incident reporting guidance.

May 4, 2025 · 2 min · 376 words · Javier Pulido

How I Passed the AWS Certified Security – Specialty (SCS-C02) Exam in 2025

My real-world journey passing the AWS Certified Security – Specialty (SCS-C02) exam. Study strategies, mistakes, resources, and tips for future candidates.

April 28, 2025 · 3 min · 622 words · Javier Pulido

Building Least-Privilege IAM Roles with IAM Access Analyzer

Use IAM Access Analyzer to build least-privilege IAM roles in AWS — includes policy generation from CloudTrail, Terraform integration, and AWS best practices.

April 21, 2025 · 4 min · 799 words · Javier Pulido

How to Detect AWS Root Account Usage (And Respond to It)

Detect and alert on AWS root account usage using CloudTrail, EventBridge, SNS, and optional Slack notifications. Step-by-step setup and Terraform included.

April 21, 2025 · 3 min · 458 words · Javier Pulido