Homo sapiens by birth;

Zero Trust in EKS: AWS IRSA & Supply Chain Security - Least Privilege & Trusted Images

Completing our Zero Trust in EKS series, this post focuses on securing North-South traffic using AWS IAM Roles for Service Accounts (IRSA) and establishing a robust software supply chain to ensure the integrity and trustworthiness of our container images.

Zero Trust in EKS: Network Isolation & Data Protection - Default Deny & Envelope Encryption

Beyond identity, a robust Zero Trust strategy for Amazon EKS demands stringent network isolation and comprehensive data protection. This post explores how to implement a 'Default Deny' network posture using Kubernetes Network Policies and safeguard sensitive data with AWS KMS Envelope Encryption and AWS Secrets Manager.

Zero Trust in EKS: Workload Identity with SPIFFE/SPIRE - The New Firewall

In a Zero Trust architecture, relying on network location for security is a relic of the past. This post delves into how SPIFFE/SPIRE provides cryptographically verifiable identities to workloads in Amazon EKS, enabling robust mutual TLS for East-West communication.

Zero Trust in EKS: Beyond the Perimeter Model - An Introduction

The traditional perimeter-based security model is no longer sufficient for modern cloud-native applications, especially within dynamic environments like Amazon EKS. This post introduces the fundamental principles of Zero Trust, its critical importance in Kubernetes, and the five core pillars that form a robust security architecture.

My Journey as an AWS Community Builder: Benefits, How to Apply, and What to Expect

Becoming part of the AWS Community Builders program has been one of the best decisions in my cloud career. I’m now in my third year… Continue readingMy Journey as an AWS Community Builder: Benefits, How to Apply, and What to Expect