Back to About Us
David Olowatobi

David Olowatobi

Cloud Security Architect

Network & Cloud Security · 7+ years

David is a network security engineer and cloud security architect with seven years of experience securing enterprise infrastructure. He holds deep expertise in AWS, Azure, and GCP security architecture, having designed and hardened cloud environments for Fortune 500 companies. His focus is on delivering practical, scalable security solutions that protect businesses without sacrificing performance.

Articles by David Olowatobi

Azure Security Center: Complete Configuration and Best Practices Guide

Azure Security Center: Complete Configuration and Best Practices Guide

Microsoft Defender for Cloud (formerly Azure Security Center) is the unified CSPM and workload protection platform for Azure, multi-cloud, and hybrid environments. This guide covers secure score optimization, Defender plan selection, regulatory compliance configuration, Sentinel integration, and the specific policies and initiatives that harden your Azure subscriptions against real-world attack paths.

David Olowatobi
David Olowatobi

April 25, 2026

0
Cloud Misconfiguration: The Number One Cause of Cloud Data Breaches

Cloud Misconfiguration: The Number One Cause of Cloud Data Breaches

Cloud misconfigurations caused 82 percent of data breaches in 2025 — not zero-day exploits, not sophisticated APTs, but default settings left unchanged and permissions granted too broadly. This guide catalogs the most common and most dangerous misconfiguration types across AWS, Azure, and GCP, shows you exactly how attackers exploit them, and gives you the detection and prevention strategies that actually work.

David Olowatobi
David Olowatobi

April 28, 2026

0
How to Set Up a Site-to-Site VPN for Your Business Network
VPN & Secure Access18 min read

How to Set Up a Site-to-Site VPN for Your Business Network

A site-to-site VPN connects your office locations into a single private network over the public internet. This guide walks through IPSec tunnel configuration between branch offices, compares hardware VPN appliances versus cloud-based solutions, and covers the routing, failover, and security hardening steps that keep multi-site connections stable and encrypted.

David Olowatobi
David Olowatobi

May 28, 2026

0
Split Tunneling: When to Use It and When to Avoid It
VPN & Secure Access15 min read

Split Tunneling: When to Use It and When to Avoid It

Split tunneling routes some traffic through your VPN while sending the rest directly to the internet — improving performance but introducing security blind spots. This guide covers how split tunneling works at the routing table level, when it is the right choice, when it creates unacceptable risk, and how to configure it safely on every major VPN platform.

David Olowatobi
David Olowatobi

June 5, 2026

0
Docker Security Best Practices: Hardening Containers in Production
Container Security20 min read

Docker Security Best Practices: Hardening Containers in Production

Field-tested Docker hardening guide for 2026. Covers minimal base images, rootless containers, seccomp and AppArmor profiles, Docker Content Trust, build-time security (multi-stage builds, secret handling, layer optimization), runtime protections (read-only filesystems, resource limits, capability dropping), Docker Bench for Security scoring, and a complete CIS Docker Benchmark implementation checklist.

David Olowatobi
David Olowatobi

June 15, 2026

0
Kubernetes Security: RBAC, Network Policies, and Pod Security Standards
Container Security21 min read

Kubernetes Security: RBAC, Network Policies, and Pod Security Standards

Complete Kubernetes security guide for 2026. Covers RBAC design patterns (ClusterRole vs Role, service account hardening, least-privilege bindings), Network Policies (Calico, Cilium, default-deny architectures), Pod Security Standards (Baseline, Restricted, migration from PSP), admission controllers (OPA Gatekeeper, Kyverno), API server hardening, etcd encryption, audit logging, and the CIS Kubernetes Benchmark.

David Olowatobi
David Olowatobi

July 5, 2026

0
Secrets Management in Containers: Vault, SOPS, and Sealed Secrets
Container Security19 min read

Secrets Management in Containers: Vault, SOPS, and Sealed Secrets

Comprehensive guide to container secrets management in 2026. Deep comparison of HashiCorp Vault (Agent Injector, CSI driver, dynamic secrets), SOPS (encrypted GitOps secrets), Sealed Secrets (Kubernetes-native encryption), External Secrets Operator (multi-cloud), and Kubernetes native secrets with encryption at rest. Covers secret rotation, zero-trust delivery, audit trails, and the architecture patterns that prevent credential leaks in containerized environments.

David Olowatobi
David Olowatobi

July 10, 2026

0
Free Newsletter

Stay Ahead of Cyber Threats

Get weekly cybersecurity insights and practical tips. No spam, just actionable advice to keep you safe.