6d ago · 13 min read · I've spent the better part of two decades in cybersecurity — starting in entry-level IT, working through the trenches of incident response and threat detection, and eventually moving into engineering
Join discussion
Feb 19 · 5 min read · When designing a passwordless-first PWA architecture, the diagram looks elegant. In production, elegance collides with: Browser inconsistencies Institutional identity constraints Support tickets Device lifecycle chaos Monitoring blind spots Le...
Join discussion
Feb 1 · 5 min read · Introduction SSH has been the default way to access Linux servers for decades. In cloud environments like AWS, however, SSH introduces unnecessary risk: static keys, open network ports, weak identity attribution, and poor auditability at scale. In th...
Join discussionJan 17 · 3 min read · 📌 Why This Project Matters Security controls appear perfect on paper — until real-world traffic, misconfigurations, and human errors expose the gaps. In Project 3, I focused on implementing core cloud security controls and then actively testing them...
Join discussionNov 30, 2025 · 12 min read · TL;DR: Scanners that run automatically, findings that aggregate in one place, reports that don't make stakeholders' eyes glaze over. For small-to-medium engineering teams who need real security without hiring a dedicated AppSec team. Security scanne...
Join discussion
Nov 6, 2025 · 3 min read · When most people think of cybersecurity, they imagine hackers breaking into systems, but rarely think about the ones standing guard on the other side. That’s exactly what the Blue Team does, but they’re the defenders. They use advanced monitoring, an...
Join discussion
Nov 4, 2025 · 3 min read · Today I built an Agentic Mini Project — a SOP Compliance Agent that answers enterprise security access control policy questions using actual internal SOP PDFs. If someone asks:“Can a contractor get VPN access for 90 days?”The agent retrieves policy +...
Join discussion
Aug 17, 2025 · 5 min read · Lately, I’ve been tinkering with an idea that sits right at the intersection of AI, cybersecurity, and compliance frameworks. If that sounds like a strange mix, it kind of is — but hear me out. Why I Started This As a security engineer, I’ve lost cou...
Join discussion
