Company Updates

Latest news and insights from our AWS Cloud Consulting journey. Stay updated with our announcements, partnerships, and thought leadership in the Cloud Computing space.

Towards the Cloud | AWS Cloud Consultancy
about 1 month ago • 🌍
We officially joined the AWS Partner Network 🎉
The APN partnership gives us specialized resources to deliver even better outcomes for organizations serious about cloud optimization.
Here's what this means for you:
✅ Achieve AWS compliance in weeks, not months ✅ Cut your cloud bill by 30-60% with proven optimization strategies ✅ Lock in fixed pricing, no more budget surprises or runaway costs
Whether you're a startup burning runway on cloud expenses or an enterprise drowning in compliance requirements, we've built a solution that addresses both pain points simultaneously.
Ready to transform your AWS strategy?
Visit to see our full proposition.

#aws#cloud#security#partnership#optimization
10
2
0
View on LinkedIn
Towards the Cloud | AWS Cloud Consultancy
5 days ago • 🌍
That $10K monthly AWS bill? The real cost is closer to $14K.
Here's the hidden math most companies miss:
The Visible Costs:
• AWS services: $10,000/month
• Seems reasonable for a growing startup
The Invisible Costs:
• Developer time on infrastructure tasks: 10 hours/week × $75/hour = $3,000/month
• Over-provisioned resources: 10-20% waste = $1,000-1,500/month
• Technical debt compound interest: growing 5% monthly
The Real Impact: → Your devs spending 25% of their time on ops instead of features → Reactive monitoring instead of proactive alerts → Inconsistent environments causing "works locally" issues
Most growing companies think they're being scrappy by managing AWS themselves.
Reality: You're often paying 40% more in total costs while moving 30% slower shipping your own products.
The sweet spot? Investing in a proper automated AWS foundation early on pays for itself within 6 months through reduced operational overhead and faster delivery.
If this sounds familiar, let's have a chat!
We help B2B companies cut their total AWS costs by 30% while shipping 2x faster through automated, secure infrastructure. No 6-month projects, just results.
#aws#infrastructure#monitoring#automation
2
0
0
View on LinkedIn
Towards the Cloud | AWS Cloud Consultancy
reposted this
7 days ago • 🌍

Danny Steenman
I help companies achieve SOC 2 compliance on AWS, cut costs by 40% while accelerating your devs.
Going live at the AWS CDK Community Meeting later today to demo something that I've been using in every customer project whenever I build Infrastructure as Code.
I'll be showcasing the AWS CDK Starter Kit.
What I'll be covering in my 10-minute demo:
- Single config file setup (customize .projenrc.ts and you're done)
- Showing branch-based ephemeral environments
- OpenID Connect integration for secure GitHub Actions workflows
- Modular project structure that allows you to quickly build constructs.
The meeting starts at 5 PM GMT+2 and includes demos from AWS teams on CDK Toolkits and Q CLI integration with EKS V2 constructs.
Plus 15 minutes of Q&A where you can pick the brains of CDK maintainers and community experts.
If you want to get a good feel of how this starter kit can help you quick start your next CDK project, then this is a must watch.
Join here:
See you there!
#aws#terraform#cdk#ai#infrastructure
17
0
0
View on LinkedIn
Towards the Cloud | AWS Cloud Consultancy
12 days ago • 🌍
The key is making the "right way" the easiest way. When your Infrastructure as Code templates are simpler than clicking through the console, adoption becomes natural.

Danny Steenman
I help companies achieve SOC 2 compliance on AWS, cut costs by 40% while accelerating your devs.
𝗦𝘁𝗼𝗽 𝗯𝗮𝗯𝘆𝘀𝗶𝘁𝘁𝗶𝗻𝗴 𝘆𝗼𝘂𝗿 𝗔𝗪𝗦 𝗶𝗻𝗳𝗿𝗮𝘀𝘁𝗿𝘂𝗰𝘁𝘂𝗿𝗲.
Here's how to build systems that actually run themselves:
𝗦𝘁𝗮𝗿𝘁 𝘄𝗶𝘁𝗵 𝗮 𝗽𝗿𝗼𝗽𝗲𝗿 𝗔𝗪𝗦 𝗟𝗮𝗻𝗱𝗶𝗻𝗴 𝗭𝗼𝗻𝗲.
Not the "let's just throw everything in one account" approach.
A real multi-account strategy with clear boundaries. Production isolated from development. Each team gets their own sandbox. Security policies enforced at the organizational level.
𝗘𝘃𝗲𝗿𝘆𝘁𝗵𝗶𝗻𝗴 𝗮𝘀 𝗖𝗼𝗱𝗲 𝗳𝗿𝗼𝗺 𝗱𝗮𝘆 𝗼𝗻𝗲.
Your VPCs, your IAM roles, your monitoring dashboards, all defined in Terraform or CDK. No more clicking through the AWS console to "quickly create something." No more tribal knowledge about how that critical security group was configured.
𝗔𝘂𝘁𝗼𝗺𝗮𝘁𝗲𝗱 𝘁𝗮𝗴𝗴𝗶𝗻𝗴 𝘁𝗵𝗮𝘁 𝗮𝗰𝘁𝘂𝗮𝗹𝗹𝘆 𝘄𝗼𝗿𝗸𝘀.
Built into your Infrastructure as Code templates. Every resource gets tagged with project, environment, owner, and cost center automatically. No human intervention required. No more guessing games about resource ownership.
𝗦𝗲𝗹𝗳-𝗵𝗲𝗮𝗹𝗶𝗻𝗴 𝗶𝗻𝗳𝗿𝗮𝘀𝘁𝗿𝘂𝗰𝘁𝘂𝗿𝗲.
Auto Scaling Groups that respond to load. CloudWatch alarms that page the right person. Systems that fix themselves before you even know they're broken.
𝗦𝘁𝗮𝗻𝗱𝗮𝗿𝗱𝗶𝘇𝗲𝗱 𝗱𝗲𝗽𝗹𝗼𝘆𝗺𝗲𝗻𝘁 𝗽𝗶𝗽𝗲𝗹𝗶𝗻𝗲𝘀.
One way to deploy code. One way to promote between environments. One way to roll back when things go wrong. Your junior engineer follows the same process as your senior engineer.
The result? Your engineers focus on building features instead of babysitting infrastructure. Your deployments become boring because they just work.
𝗧𝗵𝗲 𝗳𝗼𝘂𝗻𝗱𝗮𝘁𝗶𝗼𝗻 𝗺𝗮𝘁𝘁𝗲𝗿𝘀 𝗺𝗼𝗿𝗲 𝘁𝗵𝗮𝗻 𝘁𝗵𝗲 𝗳𝗲𝗮𝘁𝘂𝗿𝗲𝘀 𝘆𝗼𝘂 𝗯𝘂𝗶𝗹𝗱 𝗼𝗻 𝘁𝗼𝗽 𝗼𝗳 𝗶𝘁.
What's the first thing you'd standardize in your AWS environment?
#aws#cloud#terraform#cdk#security
4
0
0
View on LinkedIn
Towards the Cloud | AWS Cloud Consultancy
12 days ago • 🌍
Exactly this.
No amount of provider switching will fix poor resource governance or lack of operational discipline.
Fix your processes first. Then decide if you actually need to migrate.
Most of the time, you don't.

Danny Steenman
I help companies achieve SOC 2 compliance on AWS, cut costs by 40% while accelerating your devs.
Unpopular opinion:
Moving from one Cloud provider to another is usually an expensive solution to preventable problems.
Your infrastructure challenges exist because: You're running dev environments 24/7. You haven't right-sized your instances in years. You're storing data you forgot you had. You're paying for reserved capacity you don't use.
Switching to Azure won't fix poor resource management. Moving to GCP won't solve architectural inefficiencies. Multi-cloud definitely won't reduce complexity.
Before you migrate anywhere:
- Clean up your current environment.
- Implement proper tagging and governance.
- Right-size everything based on actual usage.
- Delete resources you don't need.
You might discover you don't need to migrate at all.
The Cloud provider isn't the problem. But how you use it is.
Change my mind.

#cloud#security#infrastructure
0
0
0
View on LinkedIn
Towards the Cloud | AWS Cloud Consultancy
19 days ago • 🌍
"Landing Zones are just for large enterprises."
Wrong.
Every organization needs a cloud foundation, whether you have 3 AWS accounts or 300.
Standardized security, consistent networking, automated governance. These aren't enterprise luxuries.
Small companies actually benefit more because they can't afford mistakes or armies of cloud engineers to fix them later.
Landing Zones ensure you build right from day one instead of rebuilding later.
See how we can help you setup the right foundation? Check the page
#aws#cloud#security#landingzone#automation
7
0
0
View on LinkedIn
Towards the Cloud | AWS Cloud Consultancy
19 days ago • 🌍
This is exactly the approach we use with our clients. We skip the theoretical training and jump straight into building their actual infrastructure needs.
The confidence boost teams get from deploying real solutions on day one is game-changing.

Danny Steenman
I help companies achieve SOC 2 compliance on AWS, cut costs by 40% while accelerating your devs.
AWS courses teach everything except what teams actually need.
Here's the problem:
Courses teach services in isolation. Real projects require services working together. The integration is where teams actually struggle.
Instead, start with a real project your team needs to build. Learn DynamoDB while building user auth. Learn Lambda while processing actual data. Learn CDK while creating infrastructure you'll actually use.
Three things happen:
- Learning has immediate business value.
- Knowledge sticks because it's applied instantly.
- Teams become experts in patterns they actually need.
I've watched teams become productive in weeks this way.
The same teams that spent months in traditional courses.
Context-driven learning beats curriculum-driven learning.
What real project could your team use for AWS learning?
#aws#lambda#cdk#ai#training
1
0
0
View on LinkedIn
Towards the Cloud | AWS Cloud Consultancy
19 days ago • 🌍
Unpopular opinion: Most AWS consultancies are in the complexity business, not the solutions business.
Their entire model is built on billable hours. More hours equals more revenue. Simple solutions mean fewer hours.
So they create complexity where none should exist:
- They turn a four-week migration into a six-month "digital transformation".
- They sell you microservices when a monolith would work perfectly.
- They convince that you need Kubernetes for your three-person startup.
That's because:
- Every additional meeting is billable.
- Every over-engineered solution extends the engagement.
- Every unnecessary architecture review pads the invoice.
But here's the thing: AI is killing this model.
Infrastructure that took consultants weeks to write? AI generates it in minutes.
Complex configurations that required "specialized expertise"? AI explains and optimizes them instantly.
That's why we focus on outcomes, not hours.
AI lets us drive results faster than ever before. So we get paid for solving problems, not extending them. Your AWS bill goes down, not our invoice up. Your team gets more capable, not more dependent.
We think that the consultancies clinging to billable hours will be the first casualties of the AI revolution.
What do you think?
#aws#ai#kubernetes#microservices#infrastructure
4
0
0
View on LinkedIn
Towards the Cloud | AWS Cloud Consultancy
reposted this
26 days ago • 🌍

Danny Steenman
I help companies achieve SOC 2 compliance on AWS, cut costs by 40% while accelerating your devs.
The best cloud migrations I've seen follow a pattern.
They don't start with "how fast can we move this?" or "how secure can we make this?"
They start with "how do we move this sustainably?"
Sustainable means:
- Fast enough to hit deadlines.
- Secure enough to sleep at night.
- Scalable enough to grow.
The teams that nail this use:
- Infrastructure as code with secure defaults.
- Automated vulnerability scanning in pipelines.
- Monitoring that prevents fires instead of reporting them.
They're not fastest in week one.
But by month six, they're lapping everyone.
The real advantage isn't choosing speed or security.
It's building systems where good security makes you faster.
Have you seen this in your or someone else's org? What made the difference between sustainable growth and shortcuts that backfired?
#cloud#terraform#security#ai#infrastructure
30
14
0
View on LinkedIn
Towards the Cloud | AWS Cloud Consultancy
reposted this
26 days ago • 🌍

Danny Steenman
I help companies achieve SOC 2 compliance on AWS, cut costs by 40% while accelerating your devs.
I help engineering teams escape single-account AWS hell.
The pattern is always the same.
Company starts small with one account. Growth outpaces architecture. Technical debt accumulates silently. Then you lose ownership and control over your resources.
But when multi-account architecture is implemented properly, results are transformative.
Teams get crystal clear visibility into their resources. Complete control over their environment boundaries. Blast radius gets contained when things go wrong. One team's mistake doesn't kill production.
Three factors that can make the difference:
- Design accounts around business domains.
- Implement SSO before you need it.
- Build comprehensive cross-account observability.
Organizations that nail this scale 10x faster. Those that skip steps pay the price later.
What's the biggest issue you've seen with single-account AWS setups?
#aws#ai#infrastructure#monitoring
66
8
0
View on LinkedIn
Towards the Cloud | AWS Cloud Consultancy
26 days ago • 🌍
What started as a side project has evolved into something I never expected.
Six years ago, I was blogging in my free time, sharing AWS knowledge with anyone who'd listen.
Today, we're a professional consultancy who has helped dozens of clients optimize their AWS infrastructure.
Part of growing up means saying goodbye to the old logo by getting a new one.
The new design captures our evolution: It combines stacking blocks representing resources in the shape of a cloud. This is a perfect metaphor for what we do in the AWS ecosystem.

#aws#cloud#infrastructure#monitoring#database
6
2
0
View on LinkedIn
Towards the Cloud | AWS Cloud Consultancy
26 days ago • 🌍
You can send them over to us.
We will fix it and make sure they develop the best practices in order to maintain easily.
That’s a guarantee.

Petar Nikov
🚀 I help startups scale smarter with AWS, DevOps & AI | CEO @ Cloud Solutions
A CTO contacted me for a Terraform-to-CDK migration. I took a look. Then I declined.
One massive main.tf. Thousands of lines. Dozens of “small change” pushes layered on top. Every team touched it. No one really owned it.
I saw the whole picture - they moved fast - and glued every piece of infra into a single file. Because, honestly, who wants to manage 20 modules when copy-pasting works? (Spoiler: that works... until it doesn’t.)
And I was right. They complained that the terraform plan became painfully slow. Review cycles dragged. No one knew what might break. People started bypassing pipelines, applying manually, and leaving zombie resources in random AWS regions.
The breaking point? Last Thursday, they nearly wiped out half of their prod.
The problem wasn’t Terraform.
Terraform didn’t fail them.
They failed Terraform.
I didn’t decline because we’re too busy.
I didn’t decline because we couldn’t do it.
I declined because we won’t deliver something I know will be broken again six months later.
If you can’t manage Terraform, you’re not ready for CDK.
Bad infra hygiene? CDK will only make it worse.
Tools don’t fix bad habits. They just hide them better - for a while.
#aws#terraform#cdk#ai#infrastructure
5
0
0
View on LinkedIn
Towards the Cloud | AWS Cloud Consultancy
reposted this
26 days ago • 🌍

Danny Steenman
I help companies achieve SOC 2 compliance on AWS, cut costs by 40% while accelerating your devs.
I'm tired of seeing panic posts about AI replacing developers.
Here's what I think is actually happening in my field (cloud computing):
While everyone's panicking about AI taking their jobs, smart developers are doubling down on deep expertise in specific domains.
The generalist who knows "a bit of everything" is becoming commoditized. But the specialist who understands for example distributed systems architecture, performance optimization at scale, or compliance frameworks inside and out?
They're becoming more valuable.
AI can generate boilerplate code, but it can't architect a system (yet) that handles your specific business constraints and requirements without the help of an experienced engineer or developer.
So the people who are thriving right now aren't the ones worrying about replacement.
They're the ones using AI as a productivity tool while deepening their expertise in areas that actually matter.
So this is the perfect time to niche down and become a true specialist instead of a generalist.
#cloud#security#optimization#ai#compliance
171
79
0
View on LinkedIn
Towards the Cloud | AWS Cloud Consultancy
about 1 month ago • 🌍
Oh this something we've been wanting for ages for my clients who use a landing zone to manage their accounts and got teams who want to experiment without messing with their regular AWS workload accounts!
We're planning to add this feature in our own custom AWS CDK Landing Zone soon!
Check out our roadmap for all the things that we have planned:
------------

Lars Schmitz
AWS Cloud Consultant
🚀 Exciting news for innovators and builders!
We’ve officially launched the Innovation Sandbox on AWS — a powerful new way to accelerate your cloud journey.
With secure, cost-effective, and recyclable sandbox environments, you can now experiment freely with Amazon Web Services (AWS) services. Whether you're testing new ideas, running demos, training models, or delivering hands-on training, the Innovation Sandbox is designed to empower learning and experimentation.
This is a game-changer for our customers and partners looking to innovate faster and smarter.
💡 Curious to learn more or want to get started? Feel free to reach out — happy to connect!
#aws#cloud#cdk#landingzone#partnership
5
0
0
View on LinkedIn
Towards the Cloud | AWS Cloud Consultancy
reposted this
about 1 month ago • 🌍

Danny Steenman
I help companies achieve SOC 2 compliance on AWS, cut costs by 40% while accelerating your devs.
Didn't think my extension would reach 100k installs, but it happened...
It has been growing steadily ever since I published it first around 6 years ago.
But what strikes me most is the staying power. In tech, 6 years feels like a lifetime.
New frameworks emerge, best practices evolve, and entire paradigms shift.
Yet developers continue finding value in something I built such a long time ago.
It's a reminder that sometimes the most enduring solutions aren't the flashiest or most cutting-edge. They're the ones that quietly remove small annoyances from people's workflows.
To the 100,000 who downloaded it. Thank you for validating that simple, focused tools still matter ❤️

63
4
0
View on LinkedIn
Towards the Cloud | AWS Cloud Consultancy
reposted this
about 1 month ago • 🌍

Danny Steenman
I help companies achieve SOC 2 compliance on AWS, cut costs by 40% while accelerating your devs.
This year marks my 6th year already of being part of the AWS Community Builders program, time flies by quickly!
🎉🥷

#aws
1
0
0
View on LinkedIn
Towards the Cloud | AWS Cloud Consultancy
reposted this
about 1 month ago • 🌍

Alessandro Volpicella
Fullstack Software Engineer | AWS & Serverless Expert | Open to freelance projects | Loves building digital products 👨🏽💻
Before you dive into Lambda code optimization, check out these 5 Lambda tips that can slash your AWS bill without changing a single line of code 💰
Every AWS project I start, I'll typically have 5 things I look out for to save Lambda costs:
1️⃣ Set up proper cost tags - can't optimize what you don't measure!
We need to understand our costs. Activate granular costs to see your daily usage. And set up cost-allocation tags.
I typically use the function names or the CloudFormation stacks as tags. Then find your Lambda functions that emit 80% of the costs and ignore the rest.
2️⃣ Cut that memory allocation - most functions use way less than they're given
Lambda bills by GB/ms. That means you can optimize on two different dimensions:
1. Memory
2. Execution time
Start with memory. Check if your Lambda functions are overprovisioned.
If they are -> Lower the memory.
⚠️ But be cautious: Lowering memory also means lowering compute. Use Lambda Powertuning to find out the perfect value
3️⃣ Lower those timeouts
The second dimension to improve: Execution time
Don't use the maximum timeout of 15 minutes. Find out how long your Lambda functions should run, set it as a maximum timeout, and figure out the outlier.
You will save money once you fix things that let your Lambda run longer than needed. Often, removing the outliers will already help.
But have alerts in place so you'll find those!
4️⃣ Switch to ARM - easy 34% savings (just test your deps first!)
With ARM-Graviton, you save up to 34% without doing anything. For new Lambda,s I use ARM as a default.
Try switching your Lambda to ARM.
But test your workloads!
- ARM can increase your dependency size
- Some dependencies don't work on ARM (e.g., Pydantic v1)
If everything works -> Switch
5️⃣ Use Lambda less -> Batching & Caching
By invoking your Lambda functions fewer times, you will save money as well (obvious, isn't it).
You can do that by making use of batching and caching:
- Batch your messages and work on them in parallel
- Cache your data closer to the user (Edge, API, Database, Redis)
After you did all of that, you can start with code improvements.
#aws#cloud#lambda#optimization#ai
90
9
0
View on LinkedIn
Towards the Cloud | AWS Cloud Consultancy
3 months ago • 🌍
Setting up a security foundation is essential if you want to keep your environment save and compliant.

Danny Steenman
I help companies achieve SOC 2 compliance on AWS, cut costs by 40% while accelerating your devs.
I've learned that AWS security isn't about perfection.
It's about consistency. It's about starting early. It's about simple, repeatable patterns.
After reviewing dozens of AWS environments, the most secure shared these traits:
- They enforced MFA for all human users without exception.
- They eliminated long-term access keys in favor of temporary credentials.
- They implemented strict password policies from day one.
- They used Service Control Policies to create organization-wide guardrails.
- They enabled GuardDuty, Config, SecurityHub and CloudTrail in all accounts.
- They implemented least privilege access through fine-grained IAM permissions.
- They automated security checks through AWS Config Rules.
- They embraced infrastructure as code for consistent security controls.
The most vulnerable AWS environments I've seen weren't lacking security knowledge.
They were lacking security habits.
What security baseline do you establish before deploying any workload?
#aws#cloud#terraform#security#ai
0
0
0
View on LinkedIn
Towards the Cloud | AWS Cloud Consultancy
4 months ago • 🌍
Focus on the necessities and then expand from there.

Danny Steenman
I help companies achieve SOC 2 compliance on AWS, cut costs by 40% while accelerating your devs.
If I were a beginner, I'd be really intimidated by this comprehensive DevOps roadmap.
And you know what? That's the exact problem.
We're creating barriers and are overcomplicating the journey.
Here's the truth: If you try to grasp everything, you'll master nothing. If you chase every tool, you'll catch none. If you spread yourself too thin, you'll never go deep.
The real strategy? Master the basics first. Get comfortable with Git, Linux, security, and networking. Make sure you can safely run a server with your application properly.
Only then start looking at abstraction tools and frameworks like containers and CI/CD.
Because here's what nobody tells you: If you don't understand the underlying fundamentals If you can't troubleshoot the basics If you don't know what these tools are actually abstracting You're setting your infrastructure up for failure.
Only add tools when:
- Your project demands it
- Your team requires it
- Your role needs it
Don't learn Kubernetes because it's trendy. Don't chase Terraform because it's popular. Don't study AWS because everyone else does.
Learn what you need, when you need it. Then move on.
Remember: Being a DevOps specialist doesn't mean knowing everything. It means knowing the right things deeply.
Who else believes in depth over breadth?

#aws#terraform#security#ai#devops
0
0
0
View on LinkedIn
Towards the Cloud | AWS Cloud Consultancy
4 months ago • 🌍
This perfectly captures why Landing Zones are non-negotiable for AWS at scale.
Must-read for any cloud architect or CTO dealing with multi-account challenges.

Danny Steenman
I help companies achieve SOC 2 compliance on AWS, cut costs by 40% while accelerating your devs.
I've watched countless organizations struggle with AWS account sprawl.
Until they discovered Landing Zones.
What started as "just a few AWS accounts" turned into an unmanageable mess of security policies, billing nightmares, and compliance headaches.
That's exactly why I now make Landing Zones my first recommendation for any business that takes AWS seriously.
Think of it as building a city. Before constructing buildings, you need infrastructure. Before adding residents, you need utilities. Before opening roads, you need traffic rules.
That's your Landing Zone - a blueprint for organizing your accounts, user management and workloads.
A standard setup provides:
- Standardized account structure
- Automated security controls
- Centralized logging
- Compliance guardrails
- Centralized identity management
After implementing Landing Zones for dozens of businesses, I've never seen one regret the investment.
What's your experience with multi-account AWS setups?
#aws#cloud#security#landingzone#ai
0
0
0
View on LinkedIn
Towards the Cloud | AWS Cloud Consultancy
4 months ago • 🌍
We have links to more great tools and solutions on the aws toolbox repo:

Danny Steenman
I help companies achieve SOC 2 compliance on AWS, cut costs by 40% while accelerating your devs.
I found a pretty handy open-source solution for monitoring root user activity on your AWS account. Here's what you need to know:
- Monitors all root user activity across multiple accounts
- Centralizes alerts in a single management account
- Uses EventBridge for reliable event routing
- Deploys via Infrastructure as Code
- Sends instant notifications via SNS
- Implementation takes less than 30 minutes and could save your organization from a security disaster.
Want to learn more? You can find the repo over at github:
Have you encountered challenges monitoring root account usage? What solutions have you tried?

#aws#terraform#security#infrastructure#monitoring
2
0
0
View on LinkedIn
Towards the Cloud | AWS Cloud Consultancy
7 months ago • 🌍
Great tips to get started!

Danny Steenman
I help companies achieve SOC 2 compliance on AWS, cut costs by 40% while accelerating your devs.
Security in the cloud is a shared responsibility. Here's a TL;DR guide to hardening your AWS account:
1. Initial Setup:
- Enable MFA for root users
- Delete root account programmatic keys
- Enable CloudTrail logging
- Enable AWS IAM Identity Center for user management
- Activate Cost Anomaly Detection
- Apply least privilege principle
- Set password policies
2. Additional Measures:
- Create CloudWatch billing alarms
- Enable GuardDuty & Security Hub
- Use multiple AWS accounts for workload isolation
- Implement Service Control Policies (SCPs)
3. If Compromised:
- Delete exposed AWS Access Keys
- Rotate all credentials
- Review CloudTrail logs
- Check for unauthorized resources
- Verify public buckets and code repositories
4. Periodic Tasks:
- Check Trusted Advisor
- Deactivate credentials for departing employees
- Use roles for EC2 instances
- Rotate (long term) credentials regularly
Remember: Cloud security is an ongoing process, not a one-time setup.
What's your top AWS security tip?
#aws#cloud#security#ai#monitoring
0
0
0
View on LinkedIn
Towards the Cloud | AWS Cloud Consultancy
8 months ago • 🌍
Why you should always load test your application before going live.

Danny Steenman
I help companies achieve SOC 2 compliance on AWS, cut costs by 40% while accelerating your devs.
The critical step 90% of companies skip before going live into production:
Load testing.
Why it matters:
• Simulates real-world user behavior
• Reveals true resource requirements
• Prevents over-provisioning and unnecessary costs
• Identifies performance bottlenecks before they impact users
Without load testing, you're flying blind.
You might think you need 10 high-powered instances. Reality? 3 medium ones could handle your peak load.
Or worse: You underestimate, and your app crashes on launch day.
Load testing isn't just a best practice. It's the difference between educated decisions and expensive guesswork.
Are you load testing before going live? If not, what's holding you back?
#optimization
1
0
0
View on LinkedIn
Towards the Cloud | AWS Cloud Consultancy
8 months ago • 🌍
It always depends!

Danny Steenman
I help companies achieve SOC 2 compliance on AWS, cut costs by 40% while accelerating your devs.
"It'll take two days, tops!"
That was me, five years ago, confidently estimating cloud engineering tasks.
Now? My go-to response is often "It depends," followed by a list of factors.
This isn't indecisiveness. It's experience talking.
Here's what changed:
1. Realized systems are more complex than they appear
2. Learned to account for integration challenges
3. Understood the impact of existing technical debt
4. Recognized the variability in team dynamics and skill levels
5. Appreciated the unpredictability of cloud service behaviors at scale
Accurate estimation isn't about speed. It's about understanding complexity and communicating it effectively.
Overconfident estimates lead to:
• Missed deadlines
• Stressed teams
• Disappointed stakeholders
• Technical shortcuts
Embracing "it depends" allows for:
• Realistic planning
• Better risk management
• Improved stakeholder education
• Higher quality deliverables
How has your approach to estimations evolved over your career?
What's the most valuable lesson you've learned?
#cloud#training
0
0
0
View on LinkedIn
Towards the Cloud | AWS Cloud Consultancy
8 months ago • 🌍
The AWS Toolbox repository got updated with a bunch of new useful scripts!
Go check it out!

Danny Steenman
I help companies achieve SOC 2 compliance on AWS, cut costs by 40% while accelerating your devs.
Cleaning up AWS accounts just got easier. I've added a powerful new script to my AWS Toolbox that's already proving its worth.
The star of the show? A script that identifies and deletes unused security groups.
Key features:
• Supports EC2, RDS, ELB, or all security group types
• Performs dry runs to preview deletions
• Handles dependencies intelligently
Real-world impact: I recently used this on a client's account and removed over 25 unused security groups in one go.
Why it matters:
1. Improved security posture
2. Reduced clutter and easier management
The best part? It's open source. You can find it in my AWS Toolbox repo:
Check out the repo and let me know if you find it useful!
#aws#security#database
1
0
0
View on LinkedIn
Towards the Cloud | AWS Cloud Consultancy
9 months ago • 🌍
How did aws help remove complexity for you?

Danny Steenman
I help companies achieve SOC 2 compliance on AWS, cut costs by 40% while accelerating your devs.
Ever been caught off guard by AWS... in a good way?
I distinctly remember my first time configuring an AWS VPC.
I braced for complexity, but found myself pleasantly surprised.
With a few clicks and some basic networking knowledge, I had created a secure, scalable network foundation.
Subnets, route tables, internet gateway all fell into place with surprising ease.
The real 'aha' moment? Realizing this seemingly simple setup could support massive future growth without a complete overhaul.
It's experiences like these that remind me: AWS often simplifies what we expect to be complex.
What's your AWS 'surprise simplicity' story?
Which service made you think, "That was easier than I expected"?
#aws
0
0
0
View on LinkedIn
Towards the Cloud | AWS Cloud Consultancy
9 months ago • 🌍
Don't get your AWS account compromised, here's some actionable advice you can apply immediately.

Danny Steenman
I help companies achieve SOC 2 compliance on AWS, cut costs by 40% while accelerating your devs.
A Reddit user just shared a nightmare scenario: their AWS account was compromised, resulting in a shocking $1,954.37 bill. But this could happen to ANY of us.
Hackers are out there, probing for weak spots. And when they find one, they'll gleefully spin up resources on your dime, potentially racking up thousands in charges before you even notice.
But don't panic. Here's your AWS security checklist:
1. MFA for Root: It shouldn't be optional. Enable it NOW.
2. Ditch Long-Term Credentials: Access keys are like leaving your house key under the doormat. Stop it.
3. Embrace IAM Roles: Give your applications and services exactly what they need, nothing more.
4. SSO is Your Friend: Centralize access management and kiss password headaches goodbye.
5. Git Smart: NEVER commit AWS credentials to your repo. No exceptions.
6. Set Up Billing Alerts: Don't wait for the bill. Get notified when spending spikes.
7. Use AWS Organizations: Segregate workloads and limit blast
What's your top AWS security tip? Share below.

#aws#security#ai#database
0
0
0
View on LinkedIn
Towards the Cloud | AWS Cloud Consultancy
9 months ago • 🌍
Feel free to contribute and make the toolbox even better for everyone!

Danny Steenman
I help companies achieve SOC 2 compliance on AWS, cut costs by 40% while accelerating your devs.
What started as a personal project has grown beyond my wildest expectations. With over 900 stars on GitHub, it's clear that many of you are finding value in it too.
I'm talking about the AWS Toolbox - an open-source repository I created to tackle the day-to-day hurdles we all face in AWS.
Here's what makes it stand out:
𝟭. 𝗖𝗼𝗺𝗽𝗿𝗲𝗵𝗲𝗻𝘀𝗶𝘃𝗲 𝗖𝗼𝘃𝗲𝗿𝗮𝗴𝗲 Scripts for S3, ECS, EC2, IAM, organizations and more. A Swiss Army knife for AWS services.
𝟮. 𝗧𝗶𝗺𝗲-𝗦𝗮𝘃𝗶𝗻𝗴 𝗔𝘂𝘁𝗼𝗺𝗮𝘁𝗶𝗼𝗻 Tasks that used to take hours now take minutes. Delete unused resources, rotate access keys, and more with ease.
𝟯. 𝗖𝗼𝗺𝗺𝘂𝗻𝗶𝘁𝘆-𝗗𝗿𝗶𝘃𝗲𝗻 While I started this project, it's the AWS community that's helping it evolve. Your real-world challenges shape its direction.
𝟰. 𝗖𝗹𝗲𝗮𝗿 𝗗𝗼𝗰𝘂𝗺𝗲𝗻𝘁𝗮𝘁𝗶𝗼𝗻 Every script comes with usage instructions. No more deciphering cryptic code comments.
𝟱. 𝗕𝗲𝘆𝗼𝗻𝗱 𝗦𝗰𝗿𝗶𝗽𝘁𝘀 I've also curated a list of invaluable AWS tools and utilities. It's your launchpad for discovering new ways to enhance your AWS workflow.
Seeing so many users benefit from this toolbox is incredibly rewarding.
But here's the exciting part: you can make it even better. The AWS Toolbox is open for contributions. Have a script that's saved you hours? A clever AWS hack you want to share? Your expertise could help thousands of other AWS users.
Have you already used the AWS Toolbox? I'd love to hear about your experience. And if you're feeling inspired, why not contribute and help shape the future of AWS automation?
You can fork or star the github repository here:
#aws#automation
1
0
0
View on LinkedIn
Towards the Cloud | AWS Cloud Consultancy
9 months ago • 🌍
Some great tips on how to easily mitigate some common issues on your AWS account.

Danny Steenman
I help companies achieve SOC 2 compliance on AWS, cut costs by 40% while accelerating your devs.
I recently completed a client's AWS infrastructure audit. The issues that uncovered are surprisingly common. Here's what I found:
𝟭. 𝗨𝗻𝗲𝗻𝗰𝗿𝘆𝗽𝘁𝗲𝗱 𝗘𝗕𝗦 𝗩𝗼𝗹𝘂𝗺𝗲𝘀 Data at rest was not encrypted, posing a significant security risk.
𝟮. 𝗖𝗹𝗼𝘂𝗱𝗧𝗿𝗮𝗶𝗹 𝗗𝗶𝘀𝗮𝗯𝗹𝗲𝗱 The account lacked crucial audit logs, limiting visibility into account activities.
𝟯. 𝗣𝘂𝗯𝗹𝗶𝗰 𝗦𝟯 𝗕𝘂𝗰𝗸𝗲𝘁𝘀 Several S3 buckets were publicly accessible, potentially exposing sensitive data.
𝟰. 𝗦𝗦𝗛 (𝗣𝗼𝗿𝘁 𝟮𝟮) 𝗢𝗽𝗲𝗻 𝘁𝗼 𝘁𝗵𝗲 𝗪𝗼𝗿𝗹𝗱 Unrestricted SSH access increased the attack surface unnecessarily.
𝟱. 𝗩𝗣𝗖 𝗙𝗹𝗼𝘄 𝗟𝗼𝗴𝘀 𝗗𝗶𝘀𝗮𝗯𝗹𝗲𝗱 Network traffic insights were missing, hampering security analysis capabilities.
𝟲. 𝗗𝗲𝗳𝗮𝘂𝗹𝘁 𝗩𝗣𝗖 𝗦𝘁𝗶𝗹𝗹 𝗶𝗻 𝗨𝘀𝗲 The default VPC was being used, often lacking proper segmentation and security controls.
These findings aren't unusual. Many organizations, from startups to enterprises, overlook these aspects of AWS security and best practices.
That's why doing regular AWS account audits are crucial. They help identify potential vulnerabilities before they become problems.
𝗞𝗲𝘆 𝘁𝗮𝗸𝗲𝗮𝘄𝗮𝘆𝘀 𝗮𝗻𝗱 𝘀𝗼𝗹𝘂𝘁𝗶𝗼𝗻𝘀:
1. Encrypt data at rest: Enable default EBS encryption at the account level.
2. Implement comprehensive logging: Enable CloudTrail across all regions and set up alerts.
3. Restrict public access: Use S3 Block Public Access at the account level and audit existing buckets.
4. Use modern, secure access methods: Implement AWS Systems Manager Session Manager instead of open SSH.
5. Enable network monitoring: Turn on VPC Flow Logs and set up automated analysis.
6. Design your network architecture intentionally: Create custom VPCs with proper security controls.
By addressing these common issues, you significantly enhance your AWS security posture. It's not about perfection, but continuous improvement.
When's the last time you audited your AWS environment?
#aws#cloud#security#ai#compliance
1
0
0
View on LinkedIn
Towards the Cloud | AWS Cloud Consultancy
10 months ago • 🌍
Here's why this cloud flip-flop is actually a golden opportunity:

Danny Steenman
I help companies achieve SOC 2 compliance on AWS, cut costs by 40% while accelerating your devs.
This is actually GREAT news for us engineers.
Here's why this cloud migration rollercoaster is a win-win:
1. Public cloud exodus = price wars: AWS, Azure, GCP will slash prices to keep customers.
2. Innovation overdrive: Cloud providers will innovate like crazy to win back business.
3. Job security: Moving to private cloud? Back to public later? Guess who's needed for both?
4. The cycle continues: In a few years, public cloud will be irresistible again. And round we go!
Remember the "death of mainframe" predictions? Yeah, they're still here. Cloud's not going anywhere; it's just evolving.
So, let the enterprises move around with their infrastructure. We'll be here, learning, adapting, and riding every wave ;-)

#aws#cloud#security#ai#infrastructure
0
0
0
View on LinkedIn
Towards the Cloud | AWS Cloud Consultancy
10 months ago • 🌍
Think about it.

Danny Steenman
I help companies achieve SOC 2 compliance on AWS, cut costs by 40% while accelerating your devs.
Context matters.
If you’re a solo dev, I can’t imagine you’d want to create a PR and review it yourself before deploying.
His system has proven it works, he’s able to ship fast, knows his codebase and fixes things fast.
This simple process works when you’re alone, if you’re in a team it’s a different story.
However I do think deploying to production immediately regardless of being solo ornin a team only has downsides and it’s not that difficult to setup a staging server and commit and push over there and if you’re happy with the result push and deploy to production.

0
0
0
View on LinkedIn
Towards the Cloud | AWS Cloud Consultancy
10 months ago • 🌍
Give it a try if you're using CloudFormation!

Danny Steenman
I help companies achieve SOC 2 compliance on AWS, cut costs by 40% while accelerating your devs.
🚀 Just launched: AWS CloudFormation Starterkit - Your fast track to AWS infrastructure as code!
Excited to share my latest open-source project: a comprehensive toolkit for rapidly deploying and managing AWS resources using CloudFormation and the Rain CLI tool.
This starterkit offers:
• Run a single script to provision the repo with your AWS account details
• Rapid CI/CD setup using GitHub actions
• Multi-environment flexibility through parameters
• Automated security validation using cfn-lint and checkov
• Secure deployments via OIDC
This toolkit aims to simplify AWS infrastructure management for CloudFormation. It's packed with best practices and ready-to-use components to get you started quickly.
Check it out and let me know what you think, link is in the description!
P.S. even though there are better abstraction tools out there like AWS CDK, there is still a huge group who use CloudFormation. This is made to make managing your CloudFormation templates a little bit more safer and easier.

#aws#cloud#terraform#cdk#security
0
0
0
View on LinkedIn
Towards the Cloud | AWS Cloud Consultancy
reposted this
11 months ago • 🌍

Danny Steenman
I help companies achieve SOC 2 compliance on AWS, cut costs by 40% while accelerating your devs.
The AWS Community Builder Year 5 kit 🎁 just dropped and it's great!
The congratulatory note for the five year milestone acknowledgment hits different - it's a great reminder of how the community has evolved over time and the impact it has made by sharing knowledge with each other and I'm glad to be part of it!
And a well deserved shoutout to Jason Dunn and the team for curating this package and for orchestrating this community program!

#aws
1
0
0
View on LinkedIn