SMSesank Munukutla (Naga)ingcppro.hashnode.dev·May 29 · 8 min readBuilding a Zero Trust Serverless Security Architecture on GCP using Terraform, Cloud Run, Cloud Armor, and Global Load BalancingIntroduction Traditional perimeter-based security models are increasingly ineffective for modern cloud-native applications, especially in serverless environments where infrastructure abstraction remov00
SMSesank Munukutla (Naga)infridaysecurity.hashnode.dev·May 10 · 6 min readBuilding a Multi-Account Zero-Trust Governance Architecture in AWS Using Terraform, SCPs, and CloudTrailIntroduction Most AWS “security projects” stop at deploying a few services and calling it secure. Real cloud governance engineering is different. The difficult part is not provisioning infrastructure.00
SMSesank Munukutla (Naga)infridaysecurity.hashnode.dev·Feb 13 · 3 min read🔐Project 7: Automated Threat Containment in AWS – Building a Cloud-Native SOAR WorkflowModern cloud security is not about alerts. It’s about automated response. In this project, I built a Cloud-native SOAR workflow that: Detects high-severity threats Automatically isolates an EC2 instance Sends security notifications Requires zero ...00
SMSesank Munukutla (Naga)infridaysecurity.hashnode.dev·Feb 9 · 3 min read🔐 Project 6: Implementing Just-In-Time (JIT) SSH Access for EC2 on AWSTime-bound access, automatic revocation, and full auditability Why This Project Exists Permanent SSH access to EC2 instances is one of the most common and dangerous cloud misconfigurations.Open port 22, long-lived keys, and forgotten security group r...00
SMSesank Munukutla (Naga)infridaysecurity.hashnode.dev·Feb 1 · 5 min read🔐 Project 5: Zero-Trust EC2 Access in AWS Using IAM, SSM, CloudTrail, and GuardDutyIntroduction SSH has been the default way to access Linux servers for decades. In cloud environments like AWS, however, SSH introduces unnecessary risk: static keys, open network ports, weak identity attribution, and poor auditability at scale. In th...00