About ZX Cloud Security

About ZX Cloud Security

ZX Cloud Security is a daily intelligence feed for cloud architects and security engineers working across AWS, Azure, and Google Cloud. Every morning at 06:00 UTC, a new set of advisories is published — drawn from CISA KEV, vendor security bulletins, and credible threat intelligence sources — each enriched with a practical Security Architect’s Take that goes beyond the CVE description to explain what the vulnerability actually means for teams running production cloud workloads.

The site also publishes in-depth practitioner guides covering the cloud security controls that matter most: IAM, encryption, posture management, compliance, and emerging areas like AI agent security.

About the Author

Steve Harrison is a Principal Security Architect with deep experience designing and reviewing security architectures across cloud‑native and hybrid environments in AWS, Azure, and GCP. His background spans Banking, Insurance, Travel (easyJet), and UK Government, giving him a broad understanding of how different sectors interpret and operationalise security risk.

He previously spent time at AWS as a Senior Security Architect — a short tenure, but one that provided valuable insight into how hyperscalers think about scale, identity, and threat boundaries. His core work focuses on identity and access management, cloud posture management, threat modelling, and the practical security implications of adopting AI within enterprise infrastructure.

ZX Cloud Security is a project Steve created to explore how AI can be applied meaningfully within Security Architecture. It’s built on a simple conviction: cloud‑security intelligence only becomes valuable when filtered through architectural judgement. Most CVE feeds tell you what was disclosed. ZX Cloud Security tells you what it means for your environment — and what you should prioritise first.

What We Cover

Daily advisories — Critical and High severity CVEs affecting cloud services, network infrastructure, and developer tooling. Each advisory includes severity, affected service, attack vector, and a recommended action for cloud teams.

Practitioner guides — Long-form technical guides written for architects who need implementation detail, not marketing copy. Covering AWS IAM, KMS, CloudTrail, cross-cloud security service comparisons, Zero Trust architecture, Kubernetes security, CSPM, CIEM, DSPM, and AI/LLM security.

Platform coverage — AWS, Microsoft Azure, and Google Cloud Platform, plus general advisories covering open-source dependencies, network equipment, and widely-deployed enterprise software.

Methodology

Advisories are sourced from:

• CISA Known Exploited Vulnerabilities (KEV) catalogue
• AWS, Microsoft, and Google security bulletins
• The Hacker News, Bleeping Computer, The Register (Security), and similar specialist publications
• NVD and vendor-published CVE advisories

Each advisory is reviewed for relevance to cloud environments and enriched with context specific to architects managing AWS, Azure, or GCP workloads. Severity ratings reflect CVSS base scores adjusted for exploitability and cloud-specific impact where the published score understates real-world risk.

Contact

For editorial enquiries, corrections, or feedback: advisories@zxcloudsecurity.co.uk

For subscription support: use the unsubscribe link in any digest email, or contact the same address.

For privacy and data enquiries, see our Privacy Policy.