Radar CTI: del ruido de vulnerabilidades a inteligencia operativa
Un modelo práctico para convertir señales de vulnerabilidades, fuentes abiertas, CTI, inventario tecnológico y scoring en decisiones operativas trazables.
Read article →
PathSentinel · security architecture with whole-system vision
See the whole path. Build for resilience.
Cloud Security, DevSecOps, Business Resilience, AI-assisted CTI/SOAR and Internet Infrastructure Intelligence for systems that must be observed, secured, documented, automated and recovered.
Not a CTF hacker. Not a PowerPoint CISO. Not a DevOps engineer who only deploys. A cloud security and business resilience profile that understands attack well enough to design real defenses.
AWS-firstCloud security, IaC, CI/CD and operational resilience.
Blue/Purple TeamDefensive architecture with offensive awareness.
Path-awareBGP, ASN, DNS, OSINT and adversarial infrastructure.
pathsentinel.control
signalexternal infrastructure anomaly
contextASN · DNS · CVE · monitored asset
priorityreview required
actionvalidate control · preserve evidence · update runbook
statusobservable · traceable · recoverable
CTI → ActionSignals become context, priority, evidence and operational tasks.
Attack path → ControlControls are validated against realistic paths, not abstract checklists.
Professional direction
Cloud Security & DevSecOps Architect | Business Resilience | Internet Infrastructure Intelligence | AI-assisted CTI/SOAR
PathSentinel is the professional identity of Jesús Macías: a technology entrepreneur and cybersecurity student building a serious profile around secure cloud architecture, operational resilience, AI-assisted threat intelligence, routing-aware security and business systems that can be governed and recovered.
Core pillars
Not isolated cybersecurity. Whole-system resilience.
Cloud Security
AWS-first architecture, IAM, VPC, logging, KMS, GuardDuty, Security Hub, hardening and recovery.
DevSecOps
Infrastructure as Code, CI/CD, Docker, Ansible, Terraform/OpenTofu, GitHub/Jenkins, rollback and controlled delivery.
Business Resilience
Continuity, evidence, documentation, backups, restore tests and reduced dependency on heroic memory.
Infrastructure Intelligence
BGP, ASN, DNS, routing, OSINT, anonymity networks and adversarial infrastructure context.
AI-assisted CTI/SOAR
Signals, RAG, prioritization, evidence, playbooks and human-supervised operational actions.
Blue/Purple Team Mindset
Attack-informed defense: validate controls, detect paths, improve architecture and document response.
Evidence & Compliance
ISO 27001, NIS2, CIS Controls, audit trails, policies, legal/fiscal evidence and operational proof.
Research & Tools
Radar CTI, papers, portfolio, university projects and production systems turned into public knowledge.
Design rule
Security is not a dashboard. It is a system that keeps working under pressure.
The objective is not to look modern. The objective is to know what matters, what can fail, how it can be attacked, how it can be detected and how it can be recovered.
AWSIaCCI/CDCTIBGP/ASN/DNSISO 27001NIS2
design_rule.json
{
"observe": ["cloud", "identity", "network", "business"],
"protect": ["access", "evidence", "delivery", "recovery"],
"validate": ["controls", "logs", "backups", "attack_paths"],
"goal": "turn business fragility into governable architecture"
}
Method
From signal to resilience in four steps.
1
Observe
Collect signals from cloud, CTI, OSINT, systems, documents, endpoints and business processes.
2
Correlate
Connect CVEs, assets, infrastructure, identity, routing, evidence and operational context.
3
Prioritize
Separate noise from risk and turn findings into actions, playbooks and controls.
4
Recover
Design for rollback, restore, continuity, documentation and reduced human dependency.
Latest writing
View blog