AWS Engineer

Hi, I'm Sri Shakthi

Building secure, scalable cloud infrastructure on AWS — one Terraform module at a time. Transitioning into cloud security with a focus on identity, detection, and incident response.

View Projects GitHub →

↓ scroll

About me

Who I am

I'm a cloud engineer actively transitioning into cloud security — learning how to build systems that are not only functional but hardened, observable, and resilient.

I started with AWS fundamentals and quickly got hands-on: deploying serverless architectures, locking down access with IAM, and writing everything as code with Terraform. Every project is a chance to go deeper.

My goal is to become a Cloud Security Engineer who understands threats from both the builder and defender perspective — someone who can secure what they build.

AWS

Primary cloud platform — CloudFront, S3, Lambda, API Gateway, IAM

IaC First

Everything built with Terraform — no manual console clicks

Security Focus

OAC, IAM least-privilege, CloudTrail, Security Hub, GuardDuty

What I work with

Skills

Cloud — AWS

CloudFront + S3 (OAC)

API Gateway + Lambda

IAM — roles, policies

Route 53 + ACM

CloudWatch + CloudTrail

Security

GuardDuty

Security Hub

IAM least-privilege

Incident Response

Threat Detection

Infrastructure as Code

Terraform

Modules + workspaces

Remote state (S3)

tfvars + locals

Networking & Identity

Route 53 + ACM

VPC + Security Groups

IAM roles + policies

S3 bucket policies

What I've built

Projects

Live

Serverless Portfolio Site

This site — a fully serverless static website deployed on AWS with zero EC2 instances. Built with Terraform from scratch: S3 origin with OAC (no public bucket), CloudFront distribution, API Gateway + Lambda backend, and a custom domain via Route 53 + ACM.

CloudFront S3 + OAC API Gateway Lambda Terraform Route 53 IAM

In Progress

AWS Security Monitoring & Incident Response Platform

A cloud security operations platform built on AWS — aggregating findings from GuardDuty, Security Hub, and CloudTrail into a centralised detection and response workflow. Designed to simulate real-world SOC capabilities using native AWS security services, all provisioned with Terraform.

GuardDuty Security Hub CloudTrail EventBridge SNS Lambda Terraform