Marco Lancini, Director of Security e autore di "The CloudSec Engineer", esperto in strategia di sicurezza, leadership tecnica e sicurezza cloud.
59 articles from this blog
Explores three methods to automate security questionnaire responses using LLMs, from SaaS vendors to custom RAG systems and direct ChatGPT/Claude use.
A technical guide on building a conversational AI knowledge base using RAG pipelines and Cloudflare's AutoRAG to query years of curated cloud security content.
A guide to building a personal 'AppRunner' on a single EC2 instance using Cloudflare Zero Trust for secure, internal app hosting.
A structured guide for reviewing a company's cloud infrastructure, workloads, and code to prioritize security improvements and establish a cloud security program.
Architecting a multi-account security logging platform in AWS, covering services like CloudTrail and CloudWatch, and best practices for collection, monitoring, and SIEM integration.
Announcing the release date for 'The CloudSec Engineer' book, a guide focused on cloud security engineering.
Introducing CloudSecGPT, a specialized AI model trained on cloud security documentation to provide interactive insights and troubleshooting help.
A developer details their migration to Google Workspace after encountering silent email drops with Cloudflare's Email Routing service.
A guide to manually migrating Terraform state from Terraform Cloud to an S3 backend due to new pricing limits.
A guide to securely deploying a private Flask web app on AWS ECS using Cloudflare Tunnel for Zero Trust access, without public exposure or VPNs.
A guide to creating and sharing personal and team weekly digests to track work progress, increase visibility, and improve transparency in a tech workplace.
A technical guide on implementing serverless ad blocking using Cloudflare Gateway and Terraform, mimicking Pi-hole functionality.
A guide to designing a state-of-the-art, multi-account security logging and monitoring platform in Google Cloud Platform (GCP).
A developer migrates from AWS SES to Cloudflare Email Routing for a simpler, serverless email handling setup for their domains.
An exploration of career pathways in cyber security, focusing on cloud security roles and the lack of industry standardization.
Analysis of the Dirty Pipe Linux kernel vulnerability (CVE-2022-0847), its impact on cloud environments, and defensive advice.
A guide to replacing Docker Desktop with minikube on macOS, focusing on solving volume mounting and performance issues.
A detailed guide on setting up a baremetal Kubernetes lab using Fedora CoreOS on an Intel NUC, covering hardware, OS installation, and cluster networking.
A guide on using Cloudflare Tunnel to securely access a home Kubernetes lab remotely via a browser, including setup and automation steps.
Introducing k8s-lab-plz, a modular, automated Kubernetes lab environment built with the Please build system for deploying tools like Vault and Prometheus.
