Tag feed

#securityengineering

9 posts0 followers

Explore Hashnode

Alternatives

Trending tags this week

MSManuela Schrittwieserneuralstackms.tech6d ago · 14 min read

RAG Under Fire: Retrieval Pipeline Vulnerabilities & Indirect Prompt Injection

NeuralStack | MS Tech Blog – Databases & Data Engineering in AI Security Engineering, Part 3 of 4 The Retrieval Pipeline as a Trust Boundary Retrieval-Augmented Generation (RAG) is now the dominant a

0

BOBrian Olsonhurrikane.netMar 28 · 13 min read

From Operations to Leadership: What 19 Years in Cybersecurity Actually Taught Me

I've spent the better part of two decades in cybersecurity — starting in entry-level IT, working through the trenches of incident response and threat detection, and eventually moving into engineering

0

NVNguyễn Việt Tùngdevpath-traveler.nguyenviettung.id.vnFeb 19 · 5 min read

Passwordless: What Worked, What Didn’t, What I’d Change

When designing a passwordless-first PWA architecture, the diagram looks elegant. In production, elegance collides with: Browser inconsistencies Institutional identity constraints Support tickets Device lifecycle chaos Monitoring blind spots Le...

0

SMSesank Munukutla (Naga)fridaysecurity.hashnode.devFeb 1 · 5 min read

🔐 Project 5: Zero-Trust EC2 Access in AWS Using IAM, SSM, CloudTrail, and GuardDuty

Introduction SSH has been the default way to access Linux servers for decades. In cloud environments like AWS, however, SSH introduces unnecessary risk: static keys, open network ports, weak identity attribution, and poor auditability at scale. In th...

0

SMSesank Munukutla (Naga)fridaysecurity.hashnode.devJan 17 · 3 min read

🔐 Project 3: Implementing and Testing Security Controls in a Real Cloud Environment

📌 Why This Project Matters Security controls appear perfect on paper — until real-world traffic, misconfigurations, and human errors expose the gaps. In Project 3, I focused on implementing core cloud security controls and then actively testing them...

0

PSPrateek Shettyprateeks007.hashnode.devNov 30, 2025 · 12 min read

Building a Security Assessment Architecture That Actually Works

TL;DR: Scanners that run automatically, findings that aggregate in one place, reports that don't make stakeholders' eyes glaze over. For small-to-medium engineering teams who need real security without hiring a dedicated AppSec team. Security scanne...

0

RMRAJA Mcyberblogz.hashnode.devNov 6, 2025 · 3 min read

Inside the Defender’s Mind: The Art and Strategy of Defensive Security

When most people think of cybersecurity, they imagine hackers breaking into systems, but rarely think about the ones standing guard on the other side. That’s exactly what the Blue Team does, but they’re the defenders. They use advanced monitoring, an...

0

AArinjayai-exp.hashnode.devNov 4, 2025 · 3 min read

🧠 Day 3: SOP Compliance Agent (Doc QA + Decision Engine) using Azure OpenAI + LlamaIndex + Streamlit

Today I built an Agentic Mini Project — a SOP Compliance Agent that answers enterprise security access control policy questions using actual internal SOP PDFs. If someone asks:“Can a contractor get VPN access for 90 days?”The agent retrieves policy +...

0

VKviraj kothalawalacyberpragmatist.comAug 17, 2025 · 5 min read

I Tried Using AI + RAG to Automate Compliance (APRA CPS 234 & ISO 27001) — Here’s What Happened

Lately, I’ve been tinkering with an idea that sits right at the intersection of AI, cybersecurity, and compliance frameworks. If that sounds like a strange mix, it kind of is — but hear me out. Why I Started This As a security engineer, I’ve lost cou...

0

#securityengineering

Search Hashnode

#securityengineering

Explore Hashnode

Trending tags this week

RAG Under Fire: Retrieval Pipeline Vulnerabilities & Indirect Prompt Injection

From Operations to Leadership: What 19 Years in Cybersecurity Actually Taught Me

Passwordless: What Worked, What Didn’t, What I’d Change

🔐 Project 5: Zero-Trust EC2 Access in AWS Using IAM, SSM, CloudTrail, and GuardDuty

🔐 Project 3: Implementing and Testing Security Controls in a Real Cloud Environment

Building a Security Assessment Architecture That Actually Works

Inside the Defender’s Mind: The Art and Strategy of Defensive Security

🧠 Day 3: SOP Compliance Agent (Doc QA + Decision Engine) using Azure OpenAI + LlamaIndex + Streamlit

I Tried Using AI + RAG to Automate Compliance (APRA CPS 234 & ISO 27001) — Here’s What Happened