Ebubechukwu Edokwe: The Nigerian Engineer Rethinking How Cloud Systems Stay Secure
By Olatunji Bello
As more of the world moves online, the systems we rely on — from banking platforms to healthcare records — are increasingly built on the cloud. But as these systems grow, so do the risks.
For Nigerian engineer Ebubechukwu Edokwe, one issue stands out above the rest: identity.
“Most people think of hacking as breaking into systems,” he says. “But a lot of the time, attackers are simply logging in — using stolen or mismanaged access.”
Based in the United States, Edokwe works at the intersection of cloud infrastructure and cybersecurity, focusing on how organizations manage access to their systems. His work centers on a simple but critical idea: security should not depend on humans remembering to configure things correctly.
A Problem Hidden in Plain Sight
Modern cloud systems are powerful, but they are also complex. Large organizations often manage thousands — sometimes millions — of user identities, each with different levels of access.
When those permissions are not set correctly, the consequences can be serious.
“Something as small as giving the wrong level of access to the wrong person can create a chain reaction,” Edokwe explains. “And these mistakes are more common than people think.”
Many of today’s biggest security incidents are not caused by sophisticated attacks, but by simple misconfigurations — access that was never properly restricted or updated.
Building Security Into the System
Rather than trying to fix these issues after they happen, Edokwe is focused on preventing them from happening at all.
His approach is to embed security directly into how systems are built and deployed. Instead of relying on engineers to manually configure access controls after the fact, his work explores ways to automate those decisions from the start.
“If you can remove the opportunity for human error, you remove a large percentage of the risk,” he says.
This approach — often referred to as “Security as Code” — treats security rules the same way developers treat software: structured, repeatable, and built into the system itself.
From Concept to Practice
What makes Edokwe’s work stand out is that it is not just theoretical.
He has developed tools and frameworks that are already being tested in real-world environments, particularly in companies that depend heavily on secure cloud systems. These early implementations are helping organizations reduce errors and improve how access is managed across their platforms.
Alongside his engineering work, he has also contributed to research in cloud security, publishing studies on identity-based threats and how they can be detected earlier. His work has drawn attention within the academic and professional community, where he has been invited to review research for international journals.
Why It Matters
As more essential services move to the cloud, the question of security becomes less technical and more societal.
Financial systems, healthcare platforms, and government services all depend on reliable access control. A single vulnerability can have wide-reaching consequences.
Edokwe believes that improving how identity is managed is one of the most important steps toward building more resilient systems.
“We’re building systems that millions of people depend on every day,” he says. “Security can’t be an afterthought.”
Looking Ahead
For Edokwe, the goal is not just to respond to threats, but to design systems that are harder to break in the first place.
As cloud adoption continues to grow, his work reflects a broader shift in how engineers think about security — not as a separate layer, but as something that must be built into the foundation.
“The future of technology is already here,” he says. “The question is whether we’re building it carefully enough.”
