Victor Grenu, AWS Infrastructure & Security Architect

$ Victor GrenuAWS Infrastructure & Security Architect

// Security, automation, and AI on AWS. Hands-on since 2017.

Get in Touch
Victor Grenu avatar

About Me

  • experience 19+ years in IT, 9+ on AWS
  • focus Cloud security, automation, AI-assisted tooling, FinOps
  • status Independent consultant, based in France, working worldwide
  • builds unusd.cloud (AI-assisted AWS waste detection) & IAMTrail (IAM policy archive)
  • writes zoph.me (weblog on AWS, security, and cloud engineering)
  • organizes fwd:cloudsec Europe (cloud security conference, non-profit, 350+ practitioners)
Cloud Security
Infrastructure as Code
DevSecOps
FinOps
Automation
Offensive Security
AI & LLM Security
Agentic Automation

What I Do

Freelance AWS Security, Automation & AI Services

AWS Architecture

Design, review, and optimize your AWS infrastructure for security, scalability, and cost-efficiency.

Security Audits & Hardening

Identify vulnerabilities and harden modern AWS workloads end to end, from data and identity to containers, serverless, and AI services.

Automation & DevSecOps

Automate deployments, security controls, and compliance with Infrastructure as Code, CI/CD, and AI-assisted workflows.

Cloud Cost Optimization

Analyze and reduce your AWS spend with actionable recommendations and automation.

Secure AI & LLM Adoption

Adopt AI and LLMs on AWS safely. Guardrails, data protection, and security reviews for Amazon Bedrock, agents, and AI-powered workflows.

Customers

Saint-Gobain Microsoft ENGIE Google Enedis Virbac Primeo Energie Ponant Mediametrie Formance CodeShield Mangrove SNEF Sopht IT4Culture Ermetic Saint-Gobain Microsoft ENGIE Google Enedis Virbac Primeo Energie Ponant Mediametrie Formance CodeShield Mangrove SNEF Sopht IT4Culture Ermetic
COMMUNITY · NON-PROFIT

fwd:cloudsec Europe

Organizer & CFP Reviewer

I help organize Europe's leading vendor-neutral cloud security conference. 350+ practitioners, CSP-agnostic, deep technical talks on attack and defense across AWS, Azure, GCP, and beyond.

Belgium flag
2024
Brussels
Attendee · CFP Reviewer
Germany flag
2025
Berlin
Organizer
United Kingdom flag
2026
London
Organizer · CFP Reviewer
Visit fwd:cloudsec Europe Watch Talks on YouTube
Sept 7-8, 2026 · Park Plaza Victoria, London

Open Source Projects

Selected work for the AWS Security community

πŸ›‘οΈ AWS Security Survival Kit

-

Comprehensive security monitoring and alerting solution for AWS accounts. Includes CloudWatch dashboards and automated security controls.

View on GitHub

πŸ” IAMTrail

-

Full version history and diffs for 1,525+ AWS Managed IAM Policies, archived since 2019. Catch every silent policy change AWS makes.

Visit IAMTrail

🌐 Subnet Watcher

-

Monitor available IPs in VPC subnets using CloudWatch metrics. Avoid IP shortages with proactive alerts.

View on GitHub

πŸ•΅οΈ AWS Trustline

-

Analyze AWS IAM and S3 policies to identify third-party and external access. Detects vendors, unknown accounts, and confused deputy risks in your AWS environment.

View on GitHub
Want to see more? Check out many more projects on GitHub

unusd.cloud

Deterministic AWS scans, AI insights

Find AWS waste before finance does. Deterministic, read-only detection rules with Navi, an AI agent grounded in your real scan findings, not guesswork. 47 rules, trusted by teams scanning 2,400+ AWS accounts, $2.8M+ waste surfaced, available on AWS Marketplace.

Visit unusd.cloud Read the Docs
30 free scans • No credit card required • 5-minute setup • Available on AWS Marketplace
OPEN SOURCE

IAMTrail

AWS Managed Policy Changes Archive

AWS silently updates Managed IAM policies. IAMTrail catches every change with full diffs since 2019. 1,525 policies tracked, 4,470+ commits archived across 424 AWS services.

Explore IAMTrail   View Source
Free, no account needed • Email subscriptions available

Writing

Thoughts on AWS, security, and cloud engineering

I write about AWS security best practices, cloud architecture patterns, DevSecOps workflows, and lessons learned from real-world engagements.

  Read on zoph.me

Results

Real outcomes from real engagements

AWS Certifications: Solutions Architect, Security Specialty, Data Analytics, SysOps, Developer

6x AWS Certified

Solutions Architect, Security Specialty, Data Analytics, SysOps, Developer, and more.

12+ Enterprise Clients

Trusted by Saint-Gobain, Microsoft, ENGIE, Google, Ponant, and others across industries.

9+ Years on AWS

19+ years total in IT infrastructure, with deep focus on AWS security since 2017.

~ $ uptime --since aws --

Savings via unusd.cloud

AI-assisted FinOps side project hunting AWS waste around the clock, one wasted dollar at a time.

~ $ unusd --savings --usd --

Get in Touch

Let’s work together on your AWS journey

hello@zoph.io | Book a Call