Tech Portfolio (PDF)
Tech Portfolio (PDF)

Words & Work

amit-sangwan-blog-image
amit-sangwan-blog-image

In modern software development, security is no longer optional — it must be an integrated part of the process from day one. A Secure Software Development Life Cycle (Secure SDLC or SSDLC) embeds security practices into every phase of development, enabling organizations to prevent risks, reduce attack surfaces, and build resilient applications. So always shift left wherever possible...

Continue Reading..
Practicing Secure SDLC

The 2025 edition of the CrowdStrike Global Threat Report paints a clear and urgent picture: threat actors have become faster, stealthier, and increasingly business-like.

  • Breakout time (time from initial access to lateral movement) dropped to an average of 48 minutes, with the fastest observed at 51 seconds.

  • Implication: Defenders now have less than an hour to detect and respond before attackers pivot to critical assets.

  • Recommended Action: Implement real-time threat detection and response, especially for endpoints and identity systems...

Continue Reading..
CrowdStrike 2025 Global Threat Report

Understand and implement a robust AWS Three-Tier Architecture using modern tools like React, Spring Boot, and Amazon Aurora.

This guide by Amit Sangwan breaks down each layer—Presentation, Application, and Data Tier—along with secure networking, VPC, subnets, load balancers, and request flows. Ideal for developers, DevOps engineers, and architects looking to build scalable, secure, and high-performance cloud-native applications on AWS.

Continue Reading..
AWS Three-Tier Architecture

Explore OWASP ASVS v5.0 — a comprehensive framework defining verifiable security requirements for modern web applications. This post by Amit Sangwan outlines the standard’s structure, assurance levels, key chapters, and major updates from version 4.0.3. Learn how ASVS helps developers, architects, and AppSec teams embed strong, testable security controls into their SDLC, covering everything from authentication and API security to secure coding and secret management.

Continue Reading..
OWASP : Application Security Verification Standard (v5.0.0 – May 2025)

Unlock the foundations of building resilient, scalable cloud applications on AWS. In this quick yet powerful guide, Amit Sangwan breaks down key concepts like horizontal and vertical scaling, high availability using ELB and ASG, and the basics of Amazon S3 storage. Perfect for developers and architects preparing for AWS certifications or real-world cloud deployments.

Continue Reading..
AWS Scalability, High Availability, and S3 Essentials

Unlock the hidden mechanics behind how Large Language Models (LLMs) like ChatGPT process and bill for their outputs. In this insightful post, Amit Sangwan explains what tokens are, how they're counted and priced, and how to manage usage with tools like the OpenAI tokenizer and tiktoken library. Perfect for developers, data scientists, and AI product teams looking to optimize cost, performance, and prompt design.

Continue Reading..
AI: The Token Economics
Discover more content, insights, and technical write-ups across a variety of topics.
Click below to explore all blogs and follow Amit on Hashnode.

★★★★★

Explore More...