Blog Posts
- Home /
- Blog Posts
Using IAM Roles Anywhere to Eliminate Static AWS Credentials
In this blog, I’ll guide you through the process of setting up AWS IAM Roles Anywhere to securely provide temporary AWS credentials for your external workloads, eliminating the need for static credentials and enhancing your security posture.
Read More
Monitor Critical IAM Actions in AWS Using CloudTrail and SNS
This blog post explains how to monitor AWS IAM activity with CloudTrail, EventBridge, and SNS to track critical API calls in real time, enhancing security and compliance.
Read More
Enable effortless and serverless App streaming using Amazon AppStream 2.0 Elastic Fleets
This blog post explores how Amazon AppStream 2.0 enables businesses to efficiently and securely stream applications to users, offering a scalable and cost-effective solution for accessing desktop applications from anywhere.
Read More
Setup an AWS KMS custom key store using AWS CloudHSM
In this blog, I’ll walk you through how you can leverage a CloudHSM custom key store to gain full control over your cryptographic keys and operations, ensuring compliance with stringent security standards while maintaining the flexibility of AWS cloud services.
Read More
Building a transactional data lake using Lake Formation and Apache Iceberg Part 3
This blog covers building a transactional Data Lake on S3 with AWS LakeFormation, Apache Iceberg, and Terraform. In Part 3, we integrate a BI workload by consolidating Iceberg data and creating a QuickSight dashboard for insights.
Read MoreBuilding a transactional data lake using Lake Formation and Apache Iceberg Part 2
This blog covers using AWS LakeFormation, Apache Iceberg, and Terraform to build a transactional Data Lake on S3. In Part 2, we set up AWS Glue ELT pipelines to clean and transform raw data into Iceberg tables for analytics.
Read MoreBuilding a transactional data lake using Lake Formation and Apache Iceberg Part 1
This blog explores using AWS LakeFormation, Apache Iceberg, and Terraform to build a transactional Data Lake on S3. In Part 1, we set up the Data Lake and ingest data from a sample source using AWS DMS.
Read More
Building a Cloud SIEM with AWS OpenSearch Security Analytics
In this blog post, I'll show you how to build a lightweight SIEM system in AWS using AWS OpenSearch and its Security Analytics features, combined with Zeek. This solution enables real-time monitoring of cloud network traffic and generates alerts when potential threats are detected.
Read More
Build a scalable IDS and IPS solution using Suricata and AWS Gateway Load Balancer
In this blog post, I will demonstrate how to leverage Suricata with the AWS Gateway Load Balancer and Terraform to implement a highly available, scalable, and cost-effective IDS/IPS solution in AWS. This approach will enable you to monitor network traffic, detect threats, and block them before they reach your systems.
Read More
Automated ECS deployments using AWS CodePipeline
In this blog post, I aim to demonstrate how you can leverage AWS CodePipeline and Amazon ECS alongside Terraform to implement an automated CI/CD pipeline. This pipeline efficiently handles the building, testing, and deployment of containerized applications, streamlining your development and delivery processes.
Read MoreCategories
Tags
- alb
- api gateway
- appstream
- aws
- cicd
- cloudhsm
- cloudtrail
- codebuild
- codecommit
- codedeploy
- codepipeline
- data analytics
- dynamodb
- ec2
- ecs
- efs
- eventbridge
- flyway
- github
- glue
- gwlb
- iac
- iam
- iceberg
- jenkins
- kms
- lakeformation
- lambda
- level-200
- level-400
- msk
- network
- network-firewall
- oidc
- opa
- packer
- quicksight
- rds
- route53
- s3
- security
- serverless
- sns
- ssm
- stepfunctions
- suricata
- swagger
- terraform
- transit gateway
- vpc
- vpn
- well-architected
- zeek