Hey, I'm AKROZ π
Cybersecurity & Cloud Architect | Breaking things (responsibly) so others can't.
π What I Do I work at the intersection of cloud infrastructure and security β assessing systems that are resilient by design, not just by policy.
Cloud Security β securing workloads across AWS / Azure / GCP, from IAM hardening to network segmentation and zero-trust architecture Threat Modelling & Risk β turning attack surfaces into diagrams, then into fixes DevSecOps β embedding security into pipelines so it's a feature, not an afterthought Compliance & Controls β translating technical controls into frameworks (NIST, CIS, ISO 27001, SOC 2) Incident Response β forensics, containment, and the post-mortem that actually gets read
π οΈ Tools & Tech Cloud AWS Azure GCP Terraform Ansible Security Wazuh Falco Trivy Prowler OpenVAS Velociraptor Languages & Scripting Python Bash PowerShell Go Containers & Orchestration Docker Kubernetes Helm ArgoCD Observability Elastic Stack Splunk Grafana OpenTelemetry
π What's in This Profile A mix of personal projects, tooling, and labs I've built to explore ideas or scratch an itch:
π Detection engineering β custom detection rules and threat hunt playbooks βοΈ Cloud security tooling β scripts and modules for auditing cloud posture π§ͺ Labs & sandboxes β environments for testing attack paths and defences π Hardening guides β opinionated baselines for common platforms
Some repos are polished, some are glorified notes. All of them are useful to me, hopefully some are useful to you.
π± Currently Exploring
TBC