AWS Security Consulting and Training


Securing Amazon Web Services (AWS) customers.

Assessments and advice

Identify security concerns through an AWS specific audit, sometimes called an AWS pentest. Then document a roadmap for improved cloud security. Learn more here.


Learn advanced AWS security topics in a two day private training course. Learn more here.

Custom development

Integrate logs into SIEMs, write rules and parsers, connect alerts to preferred mediums (Slack, JIRA, etc.) and format their output to ensure efficient responses. Develop tools, write blog posts, and perform R&D as needed.



Scott Piper has a decade of experience in cyber security, having previously worked at the NSA, as a developer for commercial security products, and as the Director of Security for a startup. He now focuses on improving the security of AWS environments.

He holds all AWS Associate and Professional level certificates along with the Security Specialty certificate. He developed,, CloudMapper, CloudTracker, Parliament, and cloudtrail-partitioner, is an organizer for the non-profit cloud security conference fwd:cloudsec, and continually feeds back his expertise to the community through open-source tools and blog posts.

Scott is based in Salt Lake City, Utah, and works remotely for clients throughout the US.

Interested in getting help with your AWS security? Email me at and we can set up a call to figure out how I might be able to assist. Or fill out this form.

Contact me

Free AWS projects I've developed and

Interactive tutorial/CTFs to learn common AWS security mistakes.


A tool for visualizing, understanding, and auditing AWS environments.


A tool for advising on Least Privileges on AWS.


An AWS IAM linter.


A tool to automatically setup Athena for searching CloudTrail logs.