https://ilyashamdi.com/categories/security/Recent content in Security on Ilyas HamdiHugo -- gohugo.ioenMon, 19 Aug 2024 00:00:00 +0000https://ilyashamdi.com/writing/infrastructure-security-architecture-patterns/Mon, 19 Aug 2024 00:00:00 +0000https://ilyashamdi.com/writing/infrastructure-security-architecture-patterns/A security pattern adopted without a threat model is a control with no clear job. The patterns aren't the problem. The application is.https://ilyashamdi.com/writing/zero-trust-network-architecture/Tue, 23 Jul 2024 00:00:00 +0000https://ilyashamdi.com/writing/zero-trust-network-architecture/Zero trust is one of the most successfully marketed architectural concepts of the decade. Most projects deliver better-than-perimeter, not actual zero trust.https://ilyashamdi.com/writing/security-posture-too-late/Mon, 14 Aug 2023 00:00:00 +0000https://ilyashamdi.com/writing/security-posture-too-late/Four triggers force the question 'what's our security posture, actually?' Three are expensive. The fourth is the one to engineer for yourself.https://ilyashamdi.com/writing/compliance-vs-security-substitute/Tue, 23 May 2023 00:00:00 +0000https://ilyashamdi.com/writing/compliance-vs-security-substitute/Compliance frameworks set a floor, not a ceiling. Treating them as the security strategy is how organizations end up audited and exploitable.https://ilyashamdi.com/writing/iam-sprawl-access-debt/Tue, 15 Nov 2022 00:00:00 +0000https://ilyashamdi.com/writing/iam-sprawl-access-debt/IAM is the part of your cloud footprint that grows fastest and gets cleaned up the slowest. The result looks like a control and behaves like a liability.