Use this file to discover all available pages before exploring further.
I work on different types of tasks depending on what you need and when you need it. From quick one-off requests to ongoing monitoring, I adapt to fit your workflow and priorities.Think of me as the engineer who can handle the routine stuff, jump in when something urgent happens, and tackle bigger projects in the background while you focus on other work.
I’m great at getting work that should be simple, done quickly.
Security assessment
Run a comprehensive cloud security assessment.
Plan
I can only allocate four hours a week to support my cyber outcomes. Give me a plan to make the most impact over the next 3 months.
Download vulnerabilities
Send me a file with all vulnerabilities.
Severity chart
Make a pie chart showing our misconfigurations by severity.
Code repositories
List code repositories with critical vulnerabilities.
Vanta tests
List Vanta tests that still need attention.
AWS Digest
List recent issues from the AWS Security Digest.
Show more simple task examples
Owned resources
Find all resources with john@example.com tagged as the owner
Joke
Send me an email with a cloud security joke
Risk email
Email my boss alice@example.com our biggest cloud security risk right now. Copy me.
Download findings
Send me a file with all findings.
And if it’s something you want checked regularly, just let me know. I’ll put it on my list of tasks, keep an eye on it, and update you when it matters, no need to ask again.
Coming soon: When something important happens, I can respond to it.Sometimes task needs to be done when a particular event happens. I can react to those events and do something in response.
GuardDuty triage
Whenever you see a new GuardDuty finding triage it against our environment and send me a Slack message.
New repo notice
Whenever someone creates a new Github repo in our org, announce it in Slack channel #engineering.
Compliance assessment
When a new issue of AWS Security Digest comes out, Slack me anything relevant to our environment.
I can work on stuff on a regular basis.Some things just need to happen to keep cloud, code, and compliance in good shape. I take care of them on my own, without the need to be reminded. You’ll hear from me when something needs attention, otherwise, consider it handled.I also pick things up as we work together. The more we interact, the better I get at spotting what matters and stepping in when it counts. Here’s a few examples of what I work on regularly:
Weekly cloud check
Every Monday at 8am (Australia/Sydney), scan our cloud environment and email me a summary of what changed, new risks, resolved issues, and any important shifts in posture.
IAM user review
On the last Friday of every month at 8am, review IAM users across AWS. If you see inactive accounts, missing MFA, or risky access patterns, flag them.
macOS updates
Monday mornings, check if everyone's on the latest macOS. If not, nudge them in Slack so they can update their laptops.
Exposed secrets (coming soon)
Keep an eye on GitHub for any leaked secrets, and DM me via Slack if any found.
Compliance check
Email me if any compliance controls are still failing by end of day.
Show more task examples
Exposed secrets (coming soon)
Scan GitHub repos for exposed secrets, and DM the team if anything's found.
Compliance report
Every Friday at 5pm, send a summary of failing compliance controls from Vanta.
MFA enforcement
Weekly check: flag any IAM users without MFA enabled.
Unused access
Monthly, review IAM roles and users for permissions that haven't been used in the last 90 days.
Dependency updates (coming soon)
Scan codebases weekly for out-of-date or vulnerable dependencies.
Coming soon: I can go away and work on tough problems by myself.Background work is perfect for tasks that need to happen but don’t require your immediate attention. I can handle these in the background and deliver results when they’re ready - whether that’s in 5 minutes or 5 hours. You’ll get notified via email or Slack when the work is complete.Here are some examples of background work you can ask me to do:
Cloud security audit
Go away and run a comprehensive security scan of our AWS environment and email me the results when complete.
Code secrets review
Review our GitHub repositories for exposed secrets. Send me a Slack message with findings and remediation steps.
Compliance assessment
Before end of week, check our current compliance status against SOC 2 controls and email me a detailed report of any gaps or failing controls that need attention.
