Skip to content
View z0ph's full-sized avatar
🚀
Love People and use things, because the opposite never works
🚀
Love People and use things, because the opposite never works
194 followers · 223 following

Achievements

Achievement: Starstruckx3Achievement: Pull Sharkx3Achievement: YOLOAchievement: Arctic Code Vault Contributor

Achievements

Achievement: Starstruckx3Achievement: Pull Sharkx3Achievement: YOLOAchievement: Arctic Code Vault Contributor

Block or report z0ph

Block user

Prevent this user from interacting with your repositories and sending you notifications. Learn more about blocking users.

You must be logged in to block users.

Maximum 250 characters. Please don’t include any personal information such as legal names or email addresses. Markdown is supported. This note will only be visible to you.
Report abuse

Contact GitHub support about this user’s behavior. Learn more about reporting abuse.

Report abuse
z0ph/README.md

Hi, I'm Victor

Independent AWS Infrastructure & Security Architect. Securing, automating, and optimizing AWS since 2017.

Based in France, working worldwide. Focused on security reviews, architecture, DevSecOps, and FinOps for large-scale and mission-critical AWS environments. 19+ years in IT, 9+ years on AWS, 6x AWS Certified.

This GitHub is where I share side projects, tooling, and experiments from my consulting work. Most active development happens under @zoph-io.

What I do

  • AWS Architecture: design, review, and optimize AWS infrastructure for security, scalability, and cost.
  • Security Audits & Hardening: identify vulnerabilities and implement defense-in-depth across AWS accounts and Organizations.
  • Automation & DevSecOps: Infrastructure as Code, CI/CD, and automated security controls.
  • Cloud Cost Optimization: actionable FinOps recommendations and automation.

Featured projects

  • unusd.cloud: the garbage collector for your AWS account. Identify unused resources to cut cost and shrink attack surface.
  • IAMTrail: full version history and diffs for 1,525+ AWS Managed IAM Policies, archived since 2019 (source).
  • AWS Security Survival Kit: opinionated security monitoring and alerting baseline for AWS accounts.
  • Subnet Watcher: CloudWatch metrics for available IPs in VPC subnets, with proactive alerts.
  • AWS Trustline: analyze IAM and S3 policies to surface third-party and external access.

More on github.com/zoph-io.

Community

Organizer and CFP reviewer for fwd:cloudsec Europe, Europe's vendor-neutral cloud security conference. Berlin 2025, then London 2026.

Writing

I write about AWS security, cloud architecture, and DevSecOps on zoph.me.

Get in touch

hello@zoph.io · Book a call · zoph.io

GitHub followers zoph.io stars

That's all, folks!

zoph.

Pinned Loading

  1. zoph-io/IAMTrail zoph-io/IAMTrail Public

    Forked from SummitRoute/aws_managed_policies

    IAMTrail

    TypeScript 510 37

  2. ansible-mac-install ansible-mac-install Public

    Forked from flemzord/ansible-mac-install

    Mac setup and configuration via Ansible.

    HTML 12 1

  3. serverless-jobs-using-fargate serverless-jobs-using-fargate Public

    Schedule serverless jobs using AWS Fargate - Example

    HCL 7 1

  4. aws-security-toolbox aws-security-toolbox Public

    AWS Security Tools (AST) in a simple Docker container. 📦

    Shell 284 28

  5. s3-backup-notifier s3-backup-notifier Public

    Daily notification if an object is missing from an AWS s3 prefix

    Python 9 3

  6. zoph-io/aws-security-survival-kit zoph-io/aws-security-survival-kit Public

    Bare minimum AWS Security Alerting and Secure by default Configuration

    Makefile 513 39