// Cloud Cybersecurity

OMEGA
NIMBUS

End-to-End Cloud Security Solutions

Security research, cloud architecture, and threat analysis. AWS-certified. Offensive-minded. Defense-first.

View Projects Read Writeups
// VISITORS

// About

Albert Sicart

Cloud Security Engineer & Cyber Security Consultant based in Barcelona.

History and Archaeology graduate turned cybersecurity consultant. That shift wasn't accidental — it reflects how I think: systems, context, patterns, risk.

Background in Digital Humanities and critical thinking that shapes a unique approach to security: adversarial, analytical, and human-centered.

Cloud Architecture GRC DevOps Cybersecurity
+3
Cybersecurity and Cloud Certifications
2+
Years as a professional in Cybersecurity
360°
Security Coverage
Threat Surface Awareness

// Projects

Portfolio

WIP

// Cloud Architecture

Secure VPC Architecture on AWS

Multi-tier segmented VPC with public/private subnets, NAT Gateway, NACLs vs Security Groups comparison, and CloudTrail logging. Designed with the AWS Well-Architected Framework Security Pillar.

AWS VPC CloudTrail IAM Terraform
Planned

// Offensive Cloud

CloudGoat Attack Scenarios

Documented exploitation of intentionally vulnerable AWS environments using Rhino Security Labs' CloudGoat. Privilege escalation paths, IAM misconfigurations, and S3 exposure scenarios.

CloudGoat AWS Pentest IAM Escalation Pacu
Live

// Threat Detection

AWS Security Monitoring Stack

End-to-end threat detection pipeline using GuardDuty, Security Hub, and CloudTrail. Automated alerts via EventBridge + SNS. Real-time findings dashboard accessible live.

GuardDuty Security Hub EventBridge SNS Lambda
→ View Live Dashboard
Live

// Computer Vision

Image Analysis — Rekognition + Bedrock

Upload any image and get real-time object detection, face analysis, text extraction, and an AI-generated description powered by Claude Haiku via Amazon Bedrock.

Rekognition Bedrock Lambda API Gateway
→ Try it live
Planned

// Network Security

Segmented Lab Network

On-prem network lab with VLAN segmentation, firewall rules, IDS/IPS, and attack/defense scenarios. Documented for both blue and red team exercises.

GNS3 VLANs Snort pfSense
Planned

// GRC + Cloud

AWS Compliance Mapping

Mapping of AWS native controls to ISO 27001, GDPR, and ENS frameworks. Control matrix, gap analysis, and remediation playbooks for a fictional SME environment.

ISO 27001 GDPR AWS Config ENS
WIP

// OSINT

OSINT Automation Toolkit

Python-based OSINT automation for passive reconnaissance. Target profiling, infrastructure enumeration, and report generation. Designed for authorized red team engagements.

Python Recon OSINT Automation

// Research & Writeups

Writeups

// Loading writeups...

// Contact

Get in Touch

Open to collaborations, research opportunities, and senior cloud security roles. Based in Barcelona. Remote-friendly.

OMEGANIMBUS
// ASSISTANT · POWERED BY AWS LEX