MKCloudSec

// Cloud Security Engineer

Research, breakdowns, and real-world insights on cloud security. AWS, IAM, threat modeling, and everything in between.

Latest Posts

Mar 25, 2026
intro

Who is MK?

Sys admin roots, security engineering evolution, and why I started this blog.

Mar 19, 2026
awss3cloud security

S3 Misconfigs I Keep Seeing in the Wild

A breakdown of the most common S3 security mistakes I encounter during assessments — and how to actually fix them.

Mar 9, 2026
awsiamcloud security

IAM Least Privilege: What It Actually Looks Like in Practice

Everyone says 'use least privilege' but nobody shows you what that means when you're staring at a real IAM policy. Here's how I approach it.

View All Posts →