Alyssa Dunn

IAM - Identity and Access Management - is the single most important security control in any AWS environment. It determines who can access what, under what conditions, and from where. It also happens to be one of the most commonly misconfigured components across Australian AWS environments, from early-stage startups through to established digital businesses. The pattern is almost always the same. A team gets started on AWS, moving fast, and grants broad permissions to get things done. A...

Australian businesses handling personal information face increasing regulatory scrutiny. The Privacy Act 1988, reinforced by the Australian Privacy Principles (APPs), sets clear expectations for how organisations collect, store, and protect customer data - and the consequences of non-compliance are becoming more significant as enforcement activity increases. For businesses running on AWS, the good news is that the platform provides the tools to meet these requirements. The challenge is...

The AWS Well-Architected Framework is referenced in almost every conversation about cloud best practice, yet many Australian CTOs and engineering leads struggle to translate it from a set of principles into a concrete action plan. The framework covers six pillars, but for most Australian businesses, the Security Pillar is where the most urgent gaps exist and where the consequences of inaction are most significant. Here's what the AWS Well-Architected Framework's Security Pillar actually...