Security

🔹 Cloud & DevSecOps Security (New)

• Cloud security posture reviews (AWS, Azure, GCP)

• IaC scanning and policy enforcement (Checkov, tfsec)

• Secrets management via Vault, AWS Secrets Manager

• CI/CD pipeline hardening with SAST/DAST tools

• Container & Kubernetes runtime security (Sysdig, Falco, Prisma Cloud)

• Compliance mapping for ISO 27001, CPS 230, SOC 2