Skip to content
View Runc9's full-sized avatar
2 followers · 7 following

Block or report Runc9

Block user

Prevent this user from interacting with your repositories and sending you notifications. Learn more about blocking users.

You must be logged in to block users.

Maximum 250 characters. Please don't include any personal information such as legal names or email addresses. Markdown supported. This note will be visible to only you.
Report abuse

Contact GitHub support about this user’s behavior. Learn more about reporting abuse.

Report abuse
Runc9/README.md

👋 Hi, I'm (Ola) Runc9

I'm a Cloud Security Compliance & GRC Engineer passionate about Compliance-as-Code, AWS security automation, AI Governance and building audit-ready, scalable infrastructure. I align cloud governance and risk management with both engineering workflows and business goals, embedding GRC into cloud workflows so compliance doesn't slow innovation, but instead supports agility, trust, and resilience.

🚀 Highlight Projects

🔒 AWS Auto-Remediation GRC Lab

Deploy Config, EventBridge, and Lambda to enforce compliance with CIS/NIST controls. Uses full CloudFormation for IaC and demonstrates real-world auto-remediation strategy.

🛡 Core Focus Areas

  • 🛠 Compliance-as-Code
  • ⚙️ Infrastructure-as-Code (CloudFormation, Terraform basics)
  • 🔐 Cloud Security Governance (IAM, Guardrails, Logging)
  • 📊 Framework Mapping (NIST 800-53, CIS v8, ISO 27001)
  • ⚡ Security Automation & Event-Driven Remediation
  • 🧾 Audit-Ready Logs and Evidence Generation
  • ☁️ Cloud Platforms: AWS-first (AWS Config, SCPs, Security Hub), multi-cloud and expanding into Kubernetes

📚 Current Labs in Progress

  • ✅ GRC Control Blueprints in AWS
  • 📦 AI Governance
  • 🔄 Cloud Audit Automation & Report Exporting
  • 🧱 Multi-account Guardrail Enforcements via SCP + Config
  • 📦 Secure Cloud Deployments with GitHub Actions + IaC

🔗 Connect With Me

Let’s secure the cloud,one compliant stack at a time.

Popular repositories Loading

  1. aws-auto-remediation-grc-lab aws-auto-remediation-grc-lab Public

    Compliance-as-Code lab using AWS Config, EventBridge, and Lambda auto-remediation with CloudFormation.

    3

  2. eks-privilege-escalation-response-lab eks-privilege-escalation-response-lab Public

    Detect and automate responses to Kubernetes privilege escalation risks in AWS EKS. Mapped to NIST 800-53, CIS Controls, and ISO 27001 using AWS-native services.

    Python 1

  3. aws-rpo-rto-grc-lab aws-rpo-rto-grc-lab Public

    Simulated multi-region AWS lab for RPO/RTO validation and disaster recovery control mapping.

    1

  4. iam-authentication-audit-tracker iam-authentication-audit-tracker Public

    IAM Authentication Audit Tracker is a Terraform-based AWS security lab that detects IAM login anomalies using CloudTrail, CloudWatch, SNS, and Athena. It integrates tfsec scans through GitHub Actio…

    HCL 1

  5. cloudsecurity-policy-repo-gov cloudsecurity-policy-repo-gov Public

    Cloud security policy-as-code with AWS Config, Lambda remediation, and Terraform.

    HCL 1

  6. In-house-grc-engineering-platform In-house-grc-engineering-platform Public

    A fully automated GRC Engineering Platform that calculates control coverage, effectiveness, and residual risk across NIST, ISO 27001, and SOC2 using canonical mapping, Python-based analytics, and a…

    Python 1