https://nahuelhernandez.com/tags/security/ Recent content in Security on Nahuel Hernandez Hugo -- gohugo.io en Thu, 19 Feb 2026 00:00:00 +0000 https://nahuelhernandez.com/blog/mcp_servers_on_eks_production/ Thu, 19 Feb 2026 00:00:00 +0000 https://nahuelhernandez.com/blog/mcp_servers_on_eks_production/ For most of 2025, MCP servers lived on developer laptops. You connected your editor or your local Claude client to a stdio process, the process held a session, you were the only user. Production was not a concern because there was no production. That changed quickly. By the back half of 2025, internal teams started exposing MCP servers as shared infrastructure. Wrap an internal API, an EKS cluster, a Postgres database, or a SaaS account in MCP, deploy it, point an agent or a fleet of agents at it. https://nahuelhernandez.com/blog/cks_kubernetes_security_specialist_certification/ Sun, 12 Dec 2021 00:00:00 +0000 https://nahuelhernandez.com/blog/cks_kubernetes_security_specialist_certification/ Certified Kubernetes Security Specialist The Certified Kubernetes Security Specialist or CKs is a hands-on test and consists of a set of performance-based items (15 problems) to be solved using a command line and is expected to take approximately two (2) hours to complete. The exam for me was the most challenging Kubernetes exam. I recommend studying using the Kim course and KodeKloud, and practicing a lot to be very fast. I finish the exam in the last minute. https://nahuelhernandez.com/blog/aws_security_specialty_certification_tips/ Sat, 21 Aug 2021 00:00:00 +0000 https://nahuelhernandez.com/blog/aws_security_specialty_certification_tips/ AWS Certified Security Specialty The AWS Certified Security Specialty (SCS-C01) validates an examinee’s ability to effectively demonstrate knowledge about securing the AWS platform. The exam is a 65 multiple-choice exam and we need to finish in less than 170 minutes. The most important topics to look at are KSM (key types, key rotations, symmetric/asymmetric, CMKs), Policies, GuardDuty, Inspector, Macie, Firewall Manager, Security Hub, CloudTrail, S3 Encryption, SG/NACL, Cloudtrail, Config, Certificate Manager, WAF, Organizations, CloudHSM, and Shield. https://nahuelhernandez.com/blog/coldcard_ultrasecure_bitcoin_hardware_wallet/ Mon, 11 Jan 2021 00:00:00 +0000 https://nahuelhernandez.com/blog/coldcard_ultrasecure_bitcoin_hardware_wallet/ A hardware wallet is a type of cryptocurrency wallet where you can store your private keys in a secure physical device. They have major advantages over standard software wallets: private keys are often stored in a protected area of a microcontroller, and cannot be transferred out of the device in plaintext. Colcard is a Hardware Wallet from Coinkite company that is one of the best solutions for holding Bitcoins in long term (HODL).