Welcome to sjramblings.io

Practical insights on AWS, AI agents, cloud architecture, and DevOps from Stephen Jones. Guides, tutorials, and opinions from the trenches of modern infrastructure engineering.

Read Latest Posts
Banner image

Latest Posts

AWS Just Doubled the SCP Quotas. Here's What Actually Changes.

AWS Just Doubled the SCP Quotas. Here's What Actually Changes.

If you’ve ever opened a pull request to add one more Service Control Policy to your Landing Zone and watched it fail with “Max Allowed SCPs for ou ‘Infrastructure’ is 5, found total 6”, you’ve felt the pressure I’m about to talk about.

Read More
AWS IP Ranges, Visualised

AWS IP Ranges, Visualised

AWS publishes a JSON file every day that nobody reads. It’s at ip-ranges.json. 2.4MB, no story.

Read More
Keeping Your AI Workloads Sovereign on AWS

Keeping Your AI Workloads Sovereign on AWS

An Australian lawyer asked me last week whether he could run “frontier Claude” on AWS Bedrock in Sydney and keep his client data in Australia. Simple enough question. The answer is one of those ones where you open your mouth ready to say “yes, obviously” and then close it again, because as of April 2026 the honest answer is “not the way you think, and here is the bit that will bite you.”

Read More
Sovereign Cloud Gets Real When Security Services Show Up

Sovereign Cloud Gets Real When Security Services Show Up

In March 2026, AWS Network Firewall became available in the European Sovereign Cloud. If you’re not paying close attention to the sovereign cloud space, that probably sounds like a minor service addition. I’d argue it’s one of the most significant milestones since the partition launched.

Read More
View All Posts