Welcome to my portfolio AWS Certified Security Specialty. Follow my lab hands-on journey as I prepare for the SCS-C02 exam! New labs every week.
| Repository | Description |
|---|---|
| incident-response | Automated incident response workflow in AWS using GuardDuty, EventBridge, Lambda and SNS. |
| logging-monitoring | Centralized security monitoring with CloudTrail, CloudWatch, Athena & SNS for alerts and threat hunting. |
| infrastructure-security | Zero Trust networking using VPC Security Groups, NACLs, ALB & WAF for layered defense-in-depth. |
| [iam] | Coming soon... |
| [data-protection] | Coming soon... |
| [man-sec-governance] | Coming soon... |
- Click each repo name to view source code, documentation, diagrams and hands-on lab.
- Domain 1: Incident Response – Automating security responses; investigating and analyzing incidents & remediating compromised resources.
- Domain 2: Logging and Monitoring – Built centralized monitoring with CloudTrail, CloudWatch and Athena. Enabled real-time alerts (SNS) and threat-hunting queries.
- Domain 3: Infrastructure Security – Securing VPC, subnets and networking; Security group, NACL, firewall policies & Hybrid/cloud infrastructure security design.
- Domain 4: Identity and Access Management – IAM design principles; federation, STS, and cross-account access & implementing least privilege and role-based access.
- Domain 5: Data Protection – Encryption at rest and in transit; KMS, Secrets Manager, CloudHSM & Key policies, rotation, and secure data handling.
- Domain 6: Management and Security Governance -
Built and maintained by Sebastian Silva C. Passionate about automation, defense-in-depth and real-world hands-on learning.
CompTIA Security+, Network+, A+ and Azure AZ 900 certified.
Contact me on LinkedIn or sebastian@playbookvisualarts.com
Sebastian Silva C. - August/September 2025 - Berlin, Germany