My Projects

Welcome to my project showcase!

Projects

Implemented a Secure and Scalable Static Website Hosting Solution

Objective: Developed a robust static website hosting solution to enhance security and scalability.

Technologies Used: Amazon S3, Route 53, CloudFront, Web Application Firewall (WAF).

Key Responsibilities:

  • Configured Amazon S3 for static website hosting.
  • Integrated Route 53 for DNS management, creating an alias record to map the website to a CloudFront distribution.
  • Implemented CloudFront for content delivery, ensuring fast and reliable access to the website.
  • Enhanced security by setting up a Web Application Firewall (WAF) to protect against common web exploits and vulnerabilities.

Outcome: Successfully deployed a secure and scalable static website (this one!), improving performance and security for end-users.

Web architecture diagram

Developed a Hurricane Tracking Web Application

Objective: Created a web application to track and display active hurricanes, leveraging AWS services for scalability and reliability.

Technologies Used: AWS Amplify, API Gateway, Lambda, DynamoDB, IAM.

Key Responsibilities:

  • Deployed the web application using AWS Amplify for seamless hosting and continuous deployment.
  • Configured API Gateway to create a RESTful API endpoint that invokes a Lambda function.
  • Developed the Lambda function to fetch active hurricane data from an external API and process the information.
  • Set up IAM roles and policies to grant the Lambda function permissions to write hurricane data into a DynamoDB table.
  • Designed the DynamoDB table schema to efficiently store and query hurricane information.
  • Implemented error handling and logging within the Lambda function to ensure robust and reliable data processing.

Outcome: Successfully launched a dynamic web application that provides real-time updates on active hurricanes, enhancing user awareness and safety.

Hurricane web app diagram

Reviewed Security Posture and Best Practices Implementation Workshop

Objective: Participated in an AWS security workshop to design and implement advanced security measures based on Zero Trust principles, ensuring secure and resilient communication within a multi-service cloud architecture.

Technologies Used: AWS IAM, Systems Manager, VPC Endpoints, GuardDuty, API Gateway, and Lambda.

Key Responsibilities:

  • Reviewed findings from earlier security assessments to evaluate the overall security posture of the infrastructure.
  • Replaced static credentials with AWS IAM short-lived credentials using the SigV4 authorization protocol.
  • Unified authorization mechanisms for users and services via IAM-based API Gateway authentication.
  • Strengthened VPC endpoint security with encrypted traffic protocols enforced through security group configurations.
  • Limited resource access by revising API Gateway resource policies to minimize the attack surface.
  • Established granular data flow controls through API Gateway and VPC endpoints.
  • Deployed AWS GuardDuty to monitor user activity and improve adaptive security measures.

Outcome: The updated architecture provided robust security, real-time adaptive authentication, and advanced monitoring capabilities.

Architecture review diagram