About Kfrost

Jerusa Vivian (kfrost)

07 Aug 2024

Cybersecurity | Application Security | Cloud Security

I am a cybersecurity engineer with over seven years of experience across application, endpoint, and infrastructure security, focused on automation-driven, scalable security solutions, maintaining delivery velocity, and supporting regulated, high-availability platforms.

This blog highlights projects I have worked on, with an emphasis on technical challenges, problem-solving approaches, and practical implementations.

DevSecOps - https://vkfrost.com/tag/devsecops-mentorship/

Cryptography - https://vkfrost.com/tag/cryptography/

Threat Modelling - https://vkfrost.com/tag/threat-modelling/

For services such as Mentorship, Blogging, or Tech discussions, feel free to reach out to me on;

X @v_kfrost.

LinkedIn - www.linkedin.com/in/vivian-jerusa-4aa925166

CISSP - ISSEP Notes.

The Certified Information Systems Security Professional (CISSP) offers three advanced courses, each focusing on a specialized area of cybersecurity: * ISSEP — Information Systems Security Engineering ProfessionalSecure systems engineering and integrationSystems engineers, architects, and security integration professionals * ISSMP — Information Systems Security Management ProfessionalLeadership and management of security programsCISOs, program managers, and senior

Session 5 - Container Scanning

Container scanning and why Trivy? As a matter of fact does anyone use any other tool? Think of containers as the Old server setup. There used to be a vulnerability scanner, which wouldnt identify all vulnerabilities and the severity level, so we could either do a scan before provisioning services

Session 4 - IAC

Why Infrastructure as Code (IaC) Came Along Before IaC, managing infrastructure was manual, error-prone, and inconsistent. Engineers had to manually configure servers, networks, and cloud resources, leading to: * Configuration drift: Environments deviating from the intended state. * Slow provisioning: Setting up infrastructure took days or weeks. * Scalability issues: Manually adding/removing

Session 3: Evolution & SAST

This TLDR document outlines application deployment evolution from monolithic systems to serverless, highlighting the shift in security practices. Initially focused on perimeter defense, security evolved to include VM, container, and API protection. Now, in cloud-native environments, it emphasizes IAM, automation, and AI-driven threat detection, reflecting the DevSecOps integration. 1. Monolithic

Read more

CISSP - ISSEP Notes.

Session 5 - Container Scanning

Session 4 - IAC

Session 3: Evolution & SAST