Shubhendu Shubham
Security Architect — TOGAF | SABSA Practitioner | Docker Captain | Snyk Ambassador
Security Architect with 7+ years across Healthcare, BFSI, and Energy sectors. Writes about cloud security, Microsoft Sentinel, threat modeling, DevSecOps, and AI agent security. Docker Captain. Snyk Ambassador. Kusto Golden Awardee.
Work with me
Got a security challenge, architecture review, or just want to talk through something? Book a free 30-min call.
Posts
- Why Ephemeral Docker Sandbox Environments Are Essential For Secure Incident Response Analysis?
- Why AI Agent Poisoning Is The Biggest Threat To SOC Teams In 2026
- Why You Still Need a SIEM
- Letting Gordon migrate your Dockerfile to DHI:
- Docker Hardened Images migration
- The FIFA World Cup Bug Wasn't About FIFA
- How a Single Photo Can Silently Own Your Mac via ExifTool
- Take Care of Your Agent
- Your IDE Just Got Pwned: The Nx Console Supply Chain Attack
- Locking Down VS Code Extensions in the Enterprise — Lessons from the GitHub Breach
- TLS Automation Isn't Optional Anymore. Here's What That Means for Your Stack.
- Docker Agent: Building Your Own AI Agent Teams from the Terminal
- Docker Scout Security Policy: A Technical Deep Dive
- NDR vs. EDR vs. XDR: A Deep Technical Breakdown for Security Engineers
- Your AI Agent Just Exfiltrated Your SSH Keys. You Approved It.
- Logic App vs Security Copilot
- Sentinel Authentication:you're probably doing it wrong?
- Email Security is broken?
- MadeYouReset' HTTP/2 Vulnerability (CVE-2025-8671) Explained
- SIEM Done Right:3stage RoadMap
- Terraform's Secret Weapon: Write Only Arguments
- When Snyk Saved my Firebase Project
- How Snyk broker solves the Enterprise Integration Puzzle?
- DNS4EU vs Cloudflare: Europe's Sovereign DNS Resolver — An Honest Security Review
- Be a Detective with AWS Detective
- Stop Fighting Local LLMs:Docker Just fixed the Mess
- Ship AI Tools Like Apps with Docker's MCP ToolKit
- Build Your Own IOC Playground with ELastic SIEM
- MPIC for All:An Open Approach to Certificate Security
- Is Your SSH Port a Security Time Bomb? Understanding Wazuh Audit Insights
- Trust boundary vs Attack Surface Explained
- Effortless Wazuh v4.10.0 upgrade using Docker
- The Best Way to Fool Yourself:Use SMS 2FA
- Log Analytics vs Log Analytics Workspace in Microsoft Sentinel: The Real Difference Explained
- Wazuh vs Elasticsearch: Why Wazuh Moved to OpenSearch and What It Means for Your SIEM
- Streamline Security :Wazuh in Docker with Kali
- Why new session should be created during user authentication?
- Automate Multiple Login failure alerts
- How to Install Kali Purple SOC Tools on Existing Kali Linux (Step-by-Step 2026)
- Live without passwords
- How to integrate Docker Scout with Azure Container Registry
- Tools that SOC/Security Analyst must know
- How to install ThreatMapper in Kali Linux?
- How to onboard your first Microsoft sentinel SIEM tool?
- Microsoft Defender for Cloud 101
- What is Microsoft Defender Threat Intelligence
- Automate Email with Azure Logic App
- How to create & Manage users and Groups within Azure AD.
- Automate Firebase hosting with Github Actions and Ruby.
- Search engines one should know as a CyberSecurity enthausist!
- What is chatGpt? How to use it?
- Do you use ls -lrt?
- Kali Linux vs Parrot OS
- Blue Team vs Red Team
- WAF vs IPS
- WAF vs Firewall
- College to Cyber Security Journey
- Metasploit Framework vs Metasploit Pro
- Building and Deploying PWA on Azure Cloud.
- Access Management 101.
- Automate Twitter via github Actions.
- Progressive WebApp.
- The Blue Team.☠️
- Managing and Storing Secrets:Azure Vault.🙆
- Protection against Security threat on Azure.☠️
- Fundamentals of Network Security.☠️
- Computer Networking 101
- Anyone can build: node.js+ Cosmos DB in Azure
- Linux Cheat Sheet 101
- Azure Networking 101
- Docker 101
- Benifits of CI/CD
- Automation with Jenkins and GitHub
- How to like Instagram posts with JavaScript?
- How to install JENKINS on Linux ?