- Published on
A serverless Lambda that scans every IAM user across an AWS org for access keys older than 90 days and quietly nags the owner in Slack to rotate them — so no human has to chase people.
All Posts
All Posts
- cybersecurity (14)
- automation (10)
- python (8)
- jira (7)
- soc (6)
- okta (5)
- open-source (5)
- fastapi (3)
- ai (3)
- vendor-risk (3)
- s3 (2)
- phishing (2)
- gmail-add-on (2)
- aws (2)
- slack (2)
- iam (2)
- hipaa (2)
- docker (2)
- workday (1)
- chrome-extension (1)
- chatbots (1)
- google-apps-script (1)
- lambda (1)
- opensearch (1)
- log-monitoring (1)
- pci-dss (1)
- script-integrity (1)
- risk-management (1)
- vciso (1)
- Published on
How I wired Workday terminations into an automated workflow that deactivates the user in Okta — cascading deprovisioning to every connected app — strips group memberships, and files a Jira deprovisioning ticket with a full audit trail.- Published on
A Slack bot for just-in-time, time-boxed production access via AWS IAM Identity Center: engineers request with a reason, I approve in one click, and a sweep over the grant records in MongoDB auto-expires the access after four hours.- Published on
Learn how to build a Chrome extension that enforces Acceptable Use Policies (AUP) before users interact with AI chatbots, using S3, Google Apps Script, and session cookies.- Published on
Learn how to build a Gmail add-on to report phishing emails, automate analysis with AI and ThePhish, and integrate with Jira for streamlined SOC operations.