Disclaimer

The views expressed on this blog are solely my own and do not represent the views or opinions of my employer. The information provided on this blog is for educational purposes only and should not be construed as professional advice.

January 18, 2000 less than 1 minute read

Share on

X Facebook LinkedIn Bluesky

Vulnerability Intelligence Is a Prioritization Problem, Not a Feed Problem

May 13, 2026 13 minute read

Use NVD, CISA KEV, exploit context, and asset exposure to prioritize vulnerabilities without creating alert fatigue.

AWS Network Firewall + Suricata: Leveraging Open-Source IDS Rules for Cloud Defense

May 6, 2026 24 minute read

Leverage open-source Suricata rules in AWS Network Firewall for advanced network threat detection beyond managed rule groups.

Security Observability with OpenTelemetry on AWS

April 29, 2026 24 minute read

Build vendor-neutral security observability with OpenTelemetry and ADOT. Export to Grafana for unified security dashboards without CloudWatch lock-in.

Container Image Signing and Verification: Cosign and Sigstore on AWS

April 22, 2026 19 minute read

Implement zero-trust container pipelines with Cosign keyless signing on AWS ECR and verification in EKS.