Terence Webster | GRC & Cloud Security Professional

About Me

I'm a Governance, Risk, and Compliance (GRC) professional with expertise in AWS cloud security and automation. I build Python-based tools to automate security audits, remediation, and compliance reporting.

With certifications including ISO 27001 Lead Auditor, AWS Certified Security - Specialty, CISSP, and CRISC, I bring a comprehensive approach to cloud security and compliance.

My portfolio includes 9 production-ready AWS security automation tools that demonstrate real-world problem-solving and enterprise-level architecture skills.

Certifications

ISO 27001 Lead Auditor
AWS Certified Security - Specialty
CISSP - (ISC)²
CRISC - ISACA
AWS Certified Cloud Practitioner

Featured Projects

AWS Security Automation & GRC Tools

🏢

Multi-Account Security Hub Aggregator

Enterprise-scale Lambda function aggregating Security Hub findings across AWS accounts with Excel reporting. Processed 446+ findings.

Lambda Security Hub STS Multi-Account

View on GitHub

📊

AWS Security Hub Excel Pipeline

Serverless pipeline generating professional compliance reports from Security Hub findings with CloudFormation deployment.

Lambda S3 CloudFormation Excel

View on GitHub

🔧

S3 Auto-Remediator

Automatically enables versioning on non-compliant S3 buckets with dry-run safety mode for secure operations.

Python S3 Automation Remediation

View on GitHub

🔍

IAM Policy Auditor

Detects overly permissive IAM policies with full admin access patterns and generates detailed CSV reports.

IAM Security Compliance Auditing

View on GitHub

🛡️

Least-Privilege Compliance Checker

Advanced IAM policy analyzer detecting 5 types of least-privilege violations with severity-based findings and actionable recommendations.

IAM Least-Privilege Security Analysis Compliance

View on GitHub

💾

EBS Volume Remediator

Identifies and removes unattached EBS volumes for cost optimization and security improvement.

EC2 Cost Optimization Automation

View on GitHub

🔔

GRC Alerter

Event-driven security monitoring with AWS SNS email alerts for IAM policy violations.

SNS Alerting Monitoring

View on GitHub

🪣

S3 Bucket Auditor

Audits S3 buckets for versioning and public access compliance with detailed reporting.

S3 Compliance Auditing

View on GitHub

🔐

IAM MFA Auditor

Identifies IAM users without MFA enabled to enforce security best practices.

IAM MFA Security

View on GitHub

🛡️

EC2 Security Group Auditor

Detects risky security group rules exposing sensitive ports to the internet.

EC2 Network Security Auditing

View on GitHub

Hi, I'm Terence Webster

GRC & Cloud Security Professional

About Me

Certifications

Featured Projects

Multi-Account Security Hub Aggregator

AWS Security Hub Excel Pipeline

S3 Auto-Remediator

IAM Policy Auditor

Least-Privilege Compliance Checker

EBS Volume Remediator

GRC Alerter

S3 Bucket Auditor

IAM MFA Auditor

EC2 Security Group Auditor

Technical Skills

Cloud & Security

Programming & Tools

GRC Expertise

Get In Touch

Email

LinkedIn

GitHub

Location