Cloud Security
Secure design and review of cloud architectures (GCP, Azure, AWS) with a focus on threat modeling, network segmentation, and data protection by design to ensure resilient and compliant environments.
Proactive Blue Ltd.
Thibaut Tauveron
Cloud & Cybersecurity Consulting, CISSP / OSCP
Zurich, Switzerland
I help organizations design and operate secure, compliant, and efficient cloud environments. My work bridges engineering, compliance, and strategy — enabling security that supports business, not bureaucracy.
With a strong background in cloud security, identity & access management, and compliance engineering, I advise companies on how to design and operate secure cloud systems aligned with industry and regulatory standards such as FINMA.
Expertise:
- Cloud Security Architecture (GCP / Azure)
- Identity & Access Management (IAM / Zero Trust)
- Security Governance, Audit & Compliance
- DevSecOps & Secure Cloud Operations
Certified CISSP and OSCP, I bring a pragmatic, risk-based approach that helps teams strengthen their security posture while staying agile.
Expertise
Identity & Access Management (IAM)
Development and assessment of IAM frameworks for regulated and high-trust environments, including least privilege, just-in-time access, SSO & federation, and Zero Trust implementation.
Compliance & Governance
Support for FINMA, ISO 27001, SOC 2, and GDPR compliance, with a pragmatic approach to risk assessment, security baselines, and policy implementation aligned with regulatory and engineering standards.
DevSecOps & Automation
Integration of security into the software delivery lifecycle, with reviews and hardening of IaC, CI/CD, Kubernetes, secrets management, and supply-chain security to enable secure, efficient operations.
Advisory & Enablement
Support for teams and leadership in translating technical risk into actionable improvements, bridging engineering, compliance, and business goals through practical guidance and assessments.