Skip to content
View Runc9's full-sized avatar
1 follower · 7 following

Block or report Runc9

Block user

Prevent this user from interacting with your repositories and sending you notifications. Learn more about blocking users.

You must be logged in to block users.

Maximum 250 characters. Please don't include any personal information such as legal names or email addresses. Markdown supported. This note will be visible to only you.
Report abuse

Contact GitHub support about this user’s behavior. Learn more about reporting abuse.

Report abuse
Runc9/README.md

👋 Hi, I'm (Ola) Runc9

I'm a Cloud Security Compliance & GRC Engineer passionate about Compliance-as-Code, AWS security automation, AI Governance and building audit-ready, scalable infrastructure. I align cloud governance and risk management with both engineering workflows and business goals, embedding GRC into cloud workflows so compliance doesn't slow innovation, but instead supports agility, trust, and resilience.

🚀 Highlight Projects

🔒 AWS Auto-Remediation GRC Lab

Deploy Config, EventBridge, and Lambda to enforce compliance with CIS/NIST controls. Uses full CloudFormation for IaC and demonstrates real-world auto-remediation strategy.

🛡 Core Focus Areas

  • 🛠 Compliance-as-Code
  • ⚙️ Infrastructure-as-Code (CloudFormation, Terraform basics)
  • 🔐 Cloud Security Governance (IAM, Guardrails, Logging)
  • 📊 Framework Mapping (NIST 800-53, CIS v8, ISO 27001)
  • ⚡ Security Automation & Event-Driven Remediation
  • 🧾 Audit-Ready Logs and Evidence Generation
  • ☁️ Cloud Platforms: AWS-first (AWS Config, SCPs, Security Hub), multi-cloud and expanding into Kubernetes

📚 Current Labs in Progress

  • ✅ GRC Control Blueprints in AWS
  • 📦 AI Governance
  • 🔄 Cloud Audit Automation & Report Exporting
  • 🧱 Multi-account Guardrail Enforcements via SCP + Config
  • 📦 Secure Cloud Deployments with GitHub Actions + IaC

🔗 Connect With Me

Let’s secure the cloud,one compliant stack at a time.

Popular repositories Loading

  1. aws-auto-remediation-grc-lab aws-auto-remediation-grc-lab Public

    Compliance-as-Code lab using AWS Config, EventBridge, and Lambda auto-remediation with CloudFormation.

    2

  2. eks-privilege-escalation-response-lab eks-privilege-escalation-response-lab Public

    Detect and automate responses to Kubernetes privilege escalation risks in AWS EKS. Mapped to NIST 800-53, CIS Controls, and ISO 27001 using AWS-native services.

    Python 1

  3. Cloudformation_AWS_Config Cloudformation_AWS_Config Public

    Automated Compliance as Code Implementation** **Objective: Enforce security policies through infrastructure-as-code - **Tools**: AWS CloudFormation + AWS Config + Service Control Policies - **Tasks…

  4. AWS_Security_Hub_CloudFormation AWS_Security_Hub_CloudFormation Public

  5. aws-config-rule-cicd-for-multi-region-grc aws-config-rule-cicd-for-multi-region-grc Public

    Automate AWS Config rule deployment across multi-region, multi-account environments using GitHub Actions and CloudFormation — built for CIS/NIST/ISO compliance.

  6. Runc9 Runc9 Public

    GitHub profile for Cloud Security Compliance & GRC Engineering portfolio.