Skip to main content
Ethan Troy portrait Ethan Troy

Ethan Troy

Security @ Cursor | Hacker @ hackIDLE

I'm often asked about what I do and I often joke that “I just click buttons.” It's how I've moved through seemingly complex problems without overcomplicating them and fundamentally I believe everything is figure-out-able if you click enough buttons.

Currently focused on

  • Offensive AI Security red teaming LLMs, agents, tool use, and AI application attack surfaces
  • Cloud & Kubernetes Security hardening cloud environments, k8 clusters, workloads, identity, and supply chain paths
  • Mobile, IoT & ICS security exploring device hacking, embedded systems, and industrial control environments
  • GRC Engineering in the Cloud building FedRAMP, machine-readable (OSCAL), and compliance automation workflows

Long-form posts on GRC engineering, AI agents, cloud security, and the tooling behind both.

Webinars, podcasts, and recorded talks on FedRAMP 20x, compliance automation, and security engineering.

Conferences and community events where I've presented or participated.

Projects

View all →

Tools I build for compliance workflows, control validation, and security data pipelines.

Open Source Security & ML Contributions

View all →

Upstream contributions and open collections across security tooling and ML for compliance.

Training Labs

View all →

Hands-on Killercoda labs for container, cloud, and vulnerability management practice.

Recent Training

View all →

Recent certification and course reviews from paths I've completed.

Work In Progress

View all →

Drafts and experiments in active development.