Welcome to iamuk.in

This is the first post on the new iamuk.in. Short version: I'm consolidating 12+ years of cloud, security, and DevOps work into one place. The systems I've designed, the incidents I've cleaned up, and the playbooks I'd hand to my past self.

What you'll find here

• AWS architecture posts. Multi-account setups, EKS, RDS, networking, IAM, the stuff that bites you in year three.
• Security writeups. Hardening, IAM least-privilege, vulnerability assessments. Defensive engineering with an offensive eye.
• DevOps notes. CI/CD, IaC, observability, incident response, FinOps.
• Build logs. Real production work, with names and numbers where I can share them.

What it's not

It's not a content farm. I'd rather write 30 useful things this year than 300 generic ones. Subscribe to the newsletter if you want one in your inbox each week.

Up next

Coming soon: a deep-dive on the recent EKS Typesense incident (RCA plus the rolling-update strategy that should have been there from day one), and a piece on cutting an AWS bill by 70% during an account-to-account migration.