This repository showcases hands-on projects in AWS Security, Infrastructure as Code (Terraform), Container Security, and Secure CI/CD Pipelines. These examples demonstrate practical implementations of secure-by-design principles for modern cloud environments.
📂 devsecops-projects/ │ ├── aws-security-projects/ # AWS-specific security labs ├── terraform-projects/ # Infrastructure as Code examples ├── container-security/ # Docker/Kubernetes security projects ├── ci-cd-security/ # Secure pipeline implementations └── docs/ # Architecture diagrams and notes
- Secure IAM Setup
Implemented least privilege policies and role-based access control. - KMS Encryption for S3
Configured bucket encryption using AWS KMS. - CloudTrail Monitoring
Integrated CloudTrail with SecurityHub for compliance and alerting.
➡ ./aws-security-projects
- Multi-environment deployments (Dev, Staging, Prod).
- Remote state management with S3 and DynamoDB.
- Security best practices for IaC.
➡ ./terraform-projects
- Hardened Docker images using best practices.
- Implemented vulnerability scanning with Trivy.
- Deployed secure containers on AWS Fargate.
➡ ./container-security
- Built secure GitHub Actions pipelines.
- Integrated automated security checks (SAST/DAST).
- Secrets management using AWS Secrets Manager.
➡ ./ci-cd-security
Architecture diagrams and security workflows are available in the ./docs folder.
- 🌐 https://cywatt.io
- 💼 https://www.linkedin.com/in/betty-godier
- 📘 Publication: The IoT Security Blueprint (RED / ETSI EN 303 645 / CRA readiness)
⭐ Tip: If you find these projects helpful, feel free to star this repo!