Alex writes about security engineering, automation, and the interesting technical challenges of building secure and compliant cloud systems. Sometimes he helps with projects that need this kind of expertise.
Running security teams, hiring engineers, evaluating security products, and building partnerships with other teams. The organizational challenges of building effective security programs alongside the technical ones.
How to build tooling that makes continuous monitoring less painful. I write about integrating security tools with FedRAMP reporting, automating POAM tracking, and using AI within compliance boundaries.
Architecture reviews, security tooling assessments, and solving the weird edge cases that come up when building secure cloud systems. The stuff that doesn't fit in a standard consulting box.
I support small projects and conversations about security engineering challenges. Drop me a line at:
Or use this form to tell me about what you're working on: