Cybersecurity Professional | SOC β IAM Transition | Identity & Access Management
I'm a cybersecurity professional with 4 years in Security Operations, now deliberately transitioning into Identity and Access Management. I document everything I build β because learning in public helps others and keeps me honest.
I create hands-on labs and guides that teach practical identity, access, and cloud security concepts.
- aws-iam-setup-guide β IAM users, groups, and scoped S3 access; step-by-step IAM provisioning and least-privilege examples.
- aws-least-privilege-lab β Practical exercises demonstrating least-privilege policies and permission scoping across AWS resources.
- aws-cross-account-role-lab β Cross-account role switching with STS AssumeRole and trust policies to securely access S3 across accounts.
- aws-oidc-lab β OIDC-based workflows for AWS authentication and short-lived credential patterns.
- aws-passwordless-fido2-lab β Passwordless authentication lab using FIDO2/WebAuthn and AWS IAM Identity Center.
- azure-lab-01-manage-user-roles β Microsoft Entra ID / RBAC hands-on lab: PIM, bulk provisioning, Graph PowerShell, and license assignment.
- Cyberops-Workstation-Setup β Homelab and workstation build for security monitoring and detection with tools like Security Onion and Cisco CyberOps VM.
- auth0-oidc-lab β End-to-end OIDC auth flow with Auth0, JWT analysis, and OAuth fundamentals.
- skills-getting-started-with-github-copilot β Exercises for getting started with GitHub Copilot and practical examples.
- Identity & Access Management: AWS IAM, OIDC, Auth0, Microsoft Entra ID, PIM, least-privilege design.
- Cloud security: cross-account access, short-lived credentials, policy scoping.
- Authentication & modern auth: OIDC, OAuth2, JWT, FIDO2 / WebAuthn.
- SOC / Detection: monitoring environments, building homelabs, incident response tooling.
- Documentation & labs: step-by-step guides and reproducible learning environments.
- Active labs and updates across AWS & Azure identity workflows (see repo timestamps for latest updates).
I write about cybersecurity, homelabs, and the realities of working in security on Medium.
- Community Manager at CyberSecHaven
- Volunteer with Slum2School Africa and Tech4Dev
- Advocate for women and non-traditional backgrounds in cybersecurity
"The best way to learn security is to build things, break them, and write about what happened."
(Updated automatically to include summaries of public repos.)