Skip to content
@AWS-Cloud-Infrastructure-Portfolio

AWS Cloud Infrastructure Portfolio

README.md

AWS Cloud Infrastructure Portfolio

This repository contains hands-on AWS cloud infrastructure and automation projects demonstrating how to design, deploy and operate secure and reliable cloud environments, with a focus on IAM, networking, logging and monitoring, automation and incident response.

Implemented AWS Cloud Environments

Repository Description
serverless-security Serverless AWS application with API Gateway, Lambda, DynamoDB, Cognito authentication, and WAF controls.
cicd-security CI/CD pipeline with access controls and security checks for AWS workloads.
iam-least-privilege IAM users, roles and least-privilege policies applied to EC2 workloads.
vpc AWS VPC architecture with public/private subnets, NAT gateway, bastion host and network segmentation (Terraform).
ec2-hardening Deploys and hardens EC2 with least-privilege IAM, secure SGs, SSM and CIS best practices.
logging-monitoring Centralized logging and monitoring using CloudTrail, GuardDuty, CloudWatch, Config and Athena.
s3-security Secures S3 buckets with policies, encryption, and misconfiguration detection AWS Trusted Advisor.
incident-response Automates detection and quarantine of compromised EC2s with GuardDuty, CloudTrail and Lambda.

Notes

These projects were developed for portfolio purposes to demonstrate practical experience with AWS cloud infrastructure, automation, monitoring and troubleshooting in realistic environments.

Maintained by Sebastian Silva C. - Berlin, Germany

Popular repositories Loading

  1. iam-least-privilege iam-least-privilege Public

    Custom IAM users, groups, roles, and least privilege access policies. Includes EC2 instance with attached IAM role and documented testing.

    1

  2. vpc vpc Public

    Automated deployment of a secure, segmented network architecture using Terraform. Displays public/private subnets, NAT gateway, bastion host access and best practices for cloud network isolation.

    HCL

  3. ec2-hardening ec2-hardening Public

    Securely deploys and hardens an AWS EC2 instance using least-privilege IAM, restrictive security groups, SSM, OS updates, SSH hardening, and logging—following CIS benchmarks and AWS best practices.

    Shell

  4. logging-monitoring logging-monitoring Public

    Configuring AWS CloudTrail, GuardDuty, AWS Config, CloudWatch and Athena for centralized logging, threat detection, compliance monitoring and log analysis.

  5. s3-security s3-security Public

    Securing S3 buckets: Test public access, apply policies and encryption, and detect misconfigurations with AWS Trusted Advisor. Includes screenshots, policy examples, and clear documentation.

  6. cicd-security cicd-security Public

    Demo for AWS CI/CD security lab with static analysis and access control.

    Python

Repositories

Showing 9 of 9 repositories
  • s3-security Public

    Securing S3 buckets: Test public access, apply policies and encryption, and detect misconfigurations with AWS Trusted Advisor. Includes screenshots, policy examples, and clear documentation.

    AWS-Cloud-Infrastructure-Portfolio/s3-security’s past year of commit activity
    0 0 0 0 Updated Feb 3, 2026
  • logging-monitoring Public

    Configuring AWS CloudTrail, GuardDuty, AWS Config, CloudWatch and Athena for centralized logging, threat detection, compliance monitoring and log analysis.

    AWS-Cloud-Infrastructure-Portfolio/logging-monitoring’s past year of commit activity
    0 0 0 0 Updated Feb 3, 2026
  • ec2-hardening Public

    Securely deploys and hardens an AWS EC2 instance using least-privilege IAM, restrictive security groups, SSM, OS updates, SSH hardening, and logging—following CIS benchmarks and AWS best practices.

    AWS-Cloud-Infrastructure-Portfolio/ec2-hardening’s past year of commit activity
    Shell 0 0 0 0 Updated Feb 3, 2026
  • vpc Public

    Automated deployment of a secure, segmented network architecture using Terraform. Displays public/private subnets, NAT gateway, bastion host access and best practices for cloud network isolation.

    AWS-Cloud-Infrastructure-Portfolio/vpc’s past year of commit activity
    HCL 0 0 0 0 Updated Feb 3, 2026
  • .github Public
    AWS-Cloud-Infrastructure-Portfolio/.github’s past year of commit activity
    0 0 0 0 Updated Feb 3, 2026
  • incident-response Public

    Automated AWS incident response: Detect and quarantine compromised EC2s with GuardDuty, CloudTrail, and Lambda—includes playbook and sample code.

    AWS-Cloud-Infrastructure-Portfolio/incident-response’s past year of commit activity
    Python 0 0 0 0 Updated Aug 17, 2025
  • iam-least-privilege Public

    Custom IAM users, groups, roles, and least privilege access policies. Includes EC2 instance with attached IAM role and documented testing.

    AWS-Cloud-Infrastructure-Portfolio/iam-least-privilege’s past year of commit activity
    1 0 0 0 Updated Aug 17, 2025
  • cicd-security Public

    Demo for AWS CI/CD security lab with static analysis and access control.

    AWS-Cloud-Infrastructure-Portfolio/cicd-security’s past year of commit activity
    Python 0 0 0 0 Updated Aug 17, 2025
  • serverless-security Public

    Secure serverless application with API Gateway, Lambda, DynamoDB, Cognito user authentication, and AWS WAF protection.

    AWS-Cloud-Infrastructure-Portfolio/serverless-security’s past year of commit activity
    0 0 0 0 Updated Aug 17, 2025

People

This organization has no public members. You must be a member to see who’s a part of this organization.

Most used topics

Loading…