Posts

Background I started my career in the glass industry as a SysAdmin, specifically in a glass factory crafting fragrance bottles and bottles for pharmaceutical industries in the north of France. Since then, I’ve focused on IT security and cloud computing. After many full-time positions for Microsoft, French Logistic Railroad, and IT consulting firms, I decided to run my AWS consulting boutique by myself 5 years ago. Just at the beginning of the pandemic, what a visionary… ...

Purpose Recently, I was working on a centralized explicit proxy service for one of my customers using a well-known Squid Internet proxy. The infrastructure is built on top of a shared AWS account hosting all standard infrastructure services, such as Internet Proxy, SOCKS5 Proxy, DNS Resolvers, ADDC, Centralized logging, and much more. Consumers are using the Internet Proxy service from multiple child AWS accounts and regions within the client AWS Organization thanks to AWS PrivateLink. ...

Following a post from my friend Julien Delange (Tech Ramblings) on software over-engineering, I want to share my thoughts about over-architecting in my preferred field of Public Cloud Architecture. Background I have been doing Cloud Architecture for more than ten years and have seen many different scenarios and use cases, from startups to GAFAM and multiple company verticals, from TV audience measurement to Gambling and Energy Producers. I also frequently challenge my fellow architects’ decisions. ...

📜 History In late 2020, I was floored by the number of announcements, changes, re:Invent releases, and blog posts that AWS pushes every week. Then, I decided to automate part of my weekly routine to stay up to date. The idea was to get a digest email summary of what was going on. It was very helpful for my job as an Indie AWS Security Consultant. A few weeks later, I decided to open my weekly digest to external subscribers, as I believed it could interest folks in the same field. Here we were with the ASD Newsletter in January 2021. ...

As we welcome 2024, I’m excited to share a special post for the AWS Security Digest Newsletter. It’s been a remarkable year, and your engagement has made it even more so. 🔗 I’ve compiled the top 5 most-clicked links from our 2023 editions. These links represent the most intriguing, informative, and impactful topics in the AWS Security landscape. 1️⃣ Enabling Just-In-Time (JIT) Access for AWS S3 Buckets 2️⃣ Actionable AWS Security Best Practices [Cheat Sheet] 3️⃣ AWS Security Foundations For Dummies 4️⃣ Bare minimum AWS Security Alerting and Configuration 5️⃣ AWS ImdsPacketAnalyzer 👨‍🍳 Why a Chef? You might wonder about the image. In our newsletter, we ‘cook’ complex AWS concepts into digestible insights, much like a chef preparing a gourmet meal. This theme has been a fun and integral part of our journey. ...