AVAILABLE FOR ENGAGEMENTS · LONDON, UK

Cloud security
architecture & engineering, built for the way teams ship today.

I'm Aman — a security architect, engineer, and founder. I help product and platform teams design defensible cloud architectures, embed security into DevOps, and turn compliance from a chore into a feature. Twenty years across pen-test, forensics, threat modelling, and secure-by-design.

Founder · Trusted Path SABSA Chartered Architect CISSP · ISSAP AWS · KCSA · KCNA
01 · Skills

What I do

core practice areas
01Cloud Security Architecture & Engineering
02Application & Technology Architecture
03DevSecOps & CI/CD Pipelines
04Containers, Docker & Microservices
05Security Automation & Analysis
06Serverless Development & Architecture
07Threat Modelling & Risk Management
08Development — C++/Qt5, Node.js, AWS Lambda
09Security Assessments, Malware & Forensics
10Compliance — ISO 27001, PCI, NCSC, CSA, GDPR
02 · Highlights

Selected publications & recognition

things I'm proud of
001 — SANS

SANS Pentest Poster

Practice Mind Map — 2015, 2016 editions

My Hacking Practice Lab mind map was selected by SANS for two consecutive years to ship as the official pentest poster — a directory of safe, legal places to practise offensive security.

002 — SANS Reading Room

Malware 101: Viruses

Published April 12, 2008

A practical taxonomy of malware classes and the incident-handling procedures appropriate to each — a paper still cited in security curricula.

003 — Community

Securing Home Computers

April 30, 2010

A free guide for home users and students to build a minimum security baseline using only freely available software.

004 — Tooling

Open-source security tools

SSLAuditor, ReportGen, AutoNMap, sqlmapGUI, Concute

Five freeware utilities used across pentest engagements — from SSL auditing to multi-tool report generation. Browse software →

03 · Experience

Track record

2006 — present
Founder
Trusted Path
Jan 2025 — Present
London, UK
Cloud, DevOps & SDLC Security
Freelance / Various
Jun 2023 — Present
London, UK
Founder
Secur3 Ltd
Jul 2018 — Nov 2024
London, UK
GIAC Gold Advisor
GIAC / SANS Institute
Apr 2009 — Dec 2021
Remote
Cloud Security Architect
Santander UK
Dec 2021 — May 2023
Milton Keynes, UK
Lead Security Architect / Engineer
Argus Media
Sep 2018 — Dec 2021
London, UK
Senior Security Architect / Engineer
Metapack
Apr 2018 — Sep 2018
London, UK
Senior Security Architect
Mimecast
Sep 2015 — Apr 2018
London, UK
Security Consultant
IBM Security [UKI]
Feb 2014 — Aug 2015
London, UK
Security Consultant
NCC Group (NGS Secure)
Mar 2011 — Feb 2014
Leatherhead, UK
Senior Consultant
Emirates Integrated Telecom (Du)
Oct 2009 — Jul 2010
Dubai, UAE
Security Consultant
SecureSynergy
Sep 2006 — Jan 2009
Bangalore, India
04 · Education

Continuous learning

selected programs
2026
Quantic
Executive MBA
2025
Oxford Saïd Business School
Executive Management Program
2018
Cylon HutZero4
Startup Accelerator Program
2015
SABSA Foundations (F1, F2)
Enterprise Security Architecture
2013
IASA UK Architecture Summit
Architecture — Enterprise, Business and IT
2011
SANS EUDFIR 2011
European Digital Forensics & Incident Response Summit
2010
SANS Europe 2010
SEC560 — Network Penetration Testing
2007
SANS Onsite India
SEC504 — Hacker Techniques & Incident Handling