@santhana11
DevSecOps Engineer building secure, scalable cloud platforms
AWS DevSecOps Engineer with 4+ years of experience designing secure, scalable cloud-native platforms. I specialize in Kubernetes (EKS), Terraform-based infrastructure, IAM security design, GitOps (ArgoCD), and CI/CD automation with built-in security controls. My focus is building production-grade systems that are secure by default — not secured later. I write about real-world AWS security failures, EKS authentication disasters, and practical DevSecOps architecture patterns. Currently building an AI-driven cloud security product focused on automated misconfiguration detection and IAM risk visibility for startups and SMBs. Open to senior DevSecOps and Cloud Security opportunities globally.
Senior DevSecOps Roles • Cloud Security Engineering • Platform Engineering • Security Architecture Consulting • Technical Writing (AWS/K8s) • Speaking & Workshops
Feb 19 · 14 min read · The Uncomfortable Truth Run this command against any Kubernetes Secret in your cluster: kubectl get secret my-database-secret -o jsonpath='{.data.password}' | base64 -d That's it. One command. Your production database password is now in plaintext on...
Join discussion
Feb 18 · 18 min read · It was a Tuesday morning. A Slack message from the VP of Engineering: Nobody can access the production Kubernetes cluster. The engineer who created the EKS cluster, the one who ran eksctl create cluster eight months ago, left the company two weeks ea...
Join discussion