Tyler Wengerd
Senior Cloud Architect I
"Tenacious"
he/him
Cloud Architect with 10+ years of cloud expertise, both on AWS and GCP. Focused on security, networking, and IaC.
When I'm not at work, you might find me riding my bicycle or playing the ukulele (not simultaneously).
- Security
- Networking
- AWS
- GCP
My Certifications
AWS Certified Advanced Networking – Specialty
AWS (last renewed/obtained: Jun 17, 2024)
Expires Jun 17, 2027
AWS Certified Developer – Associate
AWS (last renewed/obtained: Sep 16, 2024)
Expires Sep 16, 2027
AWS Certified DevOps Engineer – Professional
AWS (last renewed/obtained: Sep 16, 2024)
Expires Sep 16, 2027
AWS Certified Security – Specialty
AWS (last renewed/obtained: Apr 15, 2024)
Expires Apr 15, 2027
AWS Certified Solutions Architect - Associate
AWS (last renewed/obtained: Aug 15, 2015)
Expires Jul 13, 2026
AWS Certified Solutions Architect - Professional
AWS (last renewed/obtained: Aug 12, 2017)
Expires Jul 13, 2026
AWS Certified SysOps Administrator - Associate
AWS (last renewed/obtained: Sep 16, 2024)
Expires Sep 16, 2027
AWS Partner: Accreditation (Technical)
AWS (last renewed/obtained: Aug 25, 2025)
Expires Aug 25, 2028
Google Cloud Professional Cloud Architect
Google (last renewed/obtained: Dec 5, 2025)
Expires Dec 5, 2027
Google Cloud Professional Cloud Security Engineer
Google (last renewed/obtained: Sep 26, 2025)
Expires Sep 26, 2027
Hashicorp Certified Terraform Associate
Hashicorp (last renewed/obtained: Feb 21, 2025)
Expires Feb 21, 2027
Hashicorp Certified Terraform Authoring and Operations Professional
Hashicorp (last renewed/obtained: Feb 21, 2025)
Expires Feb 21, 2027
What my customers say
Tyler Wengerd was awesome. He took the time to understand my use case to make the cloudflow solution fit. A big thank you to Tyler.
camunda.com · Jun 2026
What I'm writing
JA3 and JA4 Fingerprints in AWS WAF and Beyond
DoiT CREs dive into some of the latest client fingerprinting techniques with a focus on using them alongside AWS WAF
Sharing Secrets in AWS Parameter Store
Best practices for sharing secrets using AWS Parameter Store, and when does using AWS Secrets Manager makes more sense
Frequently asked
questions
What do you do at DoiT?
- - Run security assessments
- - Triage security incident investigations
- - Architect network and DNS designs
- - Troubleshoot permissions issues
- - Test out new features and services
Overall, though, I'm here because I like working with people and I like solving problems. If you're a person with a problem (who isn't?), maybe I can help.
I want to improve my security in AWS. Where do I start?
Want to learn more? We do security assessments all the time for DoiT customers, and I'd be happy to help you out. We also can automatically generate security insights for you!
I'm used to AWS (or GCP) and I'm trying to learn GCP (or AWS). What are some big differences?
- - AWS IAM roles are similar to Google Cloud's Service accounts. Google's service accounts and AWS IAM role can both be assigned to resources to give them permissions.
- - Google IAM roles are sets of permissions, similar to AWS IAM policies
- - If you need external access to AWS from a service, traditionally you created an IAM user with an access key. Google allows you to create keys for service accounts. These days, IAM Roles Anywhere are recommended, instead of IAM users, to allow external service access to AWS.
I might add a non-network/security answer here eventually. Keep an eye out!
What is a JA4 fingerprint?
Terraform? CloudFormation? Something else?
Disagree? That's okay – different strokes for different folks
Do you like dogs?
I love dogs! (See the GIF FAQ below.) I also love cats. Most animals, really. Snakes and lizards are cool and I enjoy seeing them in the wild and in my yard. Goats seem like a lot of fun, but they need way more space than I have right now. But yeah, uh, dogs! Dogs are great.
What's your favorite GIF?

Got 53 minutes? Check out this episode of DoiT's Cloud Masters podcast:
pro tip: it's only 35 1⁄3 minutes if you do 1.5x speedTime zone not a fit?
I'm on US Eastern time, but sometimes you need someone closer. That's fine, everyone needs to sleep. Here are my esteemed colleagues across plenty of timezones, so you can find one who works with your schedule.
- UTC-86 FDEsAWS Core Services×3AWS DevOps×2AWS Networking×2
- UTC-75 FDEsAWS×2Networking×2AI×1
- UTC-66 FDEsAI×1Aurora×1AWS×1
- UTC-525 FDEsAWS Core Services×5AWS DevOps×5AWS Security and Identity×5



+20
- UTC10 FDEsAWS×3AI×2AWS Core Services×2
- UTC+121 FDEsAWS×3BigQuery×3RDS×3
- UTC+213 FDEsAWS Core Services×4AWS Networking×4AWS Serverless×4



+8
- UTC+82 FDEsAgentCore×1Agentic AI×1Aurora×1
- UTC+92 FDEsAWS Core Services×2AWS DevOps×1AWS Networking×1


- UTC+102 FDEsAWS Kubernetes×1AWS Serverless×1Google Cloud DevOps×1
- UTC+114 FDEsAWS Databases×2AWS×1AWS AI/ML×1
We do awesome work!
Check our our stats.
Updated Jun 27, 2026, 4:15 AM
What customers are saying
Aamir was amazing, but Google took weeks to get back to us, and they did little more than restate original ticket.
Today
Everyone responded very quickly, the delay was on my end for not being as prepared to provide details as required by the ticket.
Today
AWS keeps making their service offering both worse and more expensive.
Today
Thanks for checking with AWS
Today
I would expect GCP to be more proactive and communicate hardware failures directly with us. We should not have to request and wait for 2 weeks to get an RCA.
Today
Quick professional results that helped us to independently corroborate our own RCA and provide better insight into GCP's documented behavior.
Today
Quick reaction
Today
Diego was very fast at providing us an answer.
Today
Thanks for following up after the weekend, and also for providing the very relevant hint about DoiT Insights.
Today
Had problem with Ubuntu -> Ubuntu Pro convertion. Avi guided me how to do so I've succeded
Today
Dhiraj has been very helpful and did an excellent deep-dive on our case
Today
It would be useful to have a possibility in DoIT that allows us to understand the cost that we save by using our own 3 year savings plans compared to FlexSave. For example, this feature would show the following costs for a configurable timeframe: - Cost of all EC2 instances if they were fully on-demand (no flexsave; no savings plans) - Cost of all EC2 instances with only FlexSave - Current Cost of EC2 instances taking into account FlexSave and SavingsPlans
Today
AWS support was hesitant to admit there was a problem with their infrastructure, though the evidence pointed to it. Initially the blame was shifted towards us (the customer) with nothing to hold that statement. Trying to prove this indeed was an event with AWS infrastructure took time and effort of our own, even though they had all necessary information, and more. They embarked on a thorough investigation only when we followed up with questions and concerns about the holes in their statement regarding this event. As expected, the investigation showed they exhibited performance degradation due to a bug which triggered as they performed maintenance on DynamoDB. In the end, I am happy to see that the issue was understood, pinpointed and since fixed.
Today
Logan provided a timely and clear response. This helps resolve the issue with the customer too.
Today
David was responsive and offered several options to help resolve this request. With his feedback and sharing of ideas we were able to resolve this issue internally.
Today
Tomer as always was very helpful. took the time to investigate, explain and even pining us when we were too busy to follow the ticket ourselves. Thanks for all the help!
Today
DoIT support is superb, I'd even say that Devanshu was much more helpful than AWS, but they helped too. Thanks a lot
Today
Thank you for the quick feedback on the topic, we are already developing the fix for the issue.
Today
Marcin was incredibly helpful and responsive during a complex bug ticket that involved working directly with Google engineers.
Today
Few comments: First, there's a problem with your ranking as I must pick either GOOD or BAD So I had an issue which couldn't resolved with the bot, I have escalated it to a human, and had to remind again after a week with no reply Now, once someone actually paid attention - the issue was resolved professionally and instantly; so how should I rank the entire experience? Good or Bad? That's a classic 7/10
Today
