Cloud security specialist with expertise in hybrid cloud/on-premise architectures and compliance-focused automation. Provenability to design secure, scalable infrastructure using Infrastructure-as-Code (Terraform/Ansible) and implementing Enterprise-grade security controls (AWS Network Firewall, KMS, Cloudflare Tunnel). Skilled in optimizing cross-environment connectivity and reducing operational overhead through CI/CD pipelines and system hardening.
January 2020 β Present
July 2016 β April 2017
Engineered a hybrid hosting solution using Apache/XAMPP, bypassing ISP restrictionsvia Cloudflare Tunnel, automated DNS failover with No-IP and systemd services, achieving 99.9% uptime for static websites. View on GitHub
Implemented GitHub Actions workflow to sync static site updates from repositories to a Linuxhome server via SSH, with automated integrity checks and rollback capabilities.View on GitHub
Connected an on-premises to cloud via Terraform/Ansible, leveraging Transit Gateway and Site-to-SiteVPN, Implemented AWS Network Firewall rules to block public SSH access, with VPC Flow Logs archived to S3.View on GitHub
Configured and managed Gitpod workspaces to automate development environment setup, improvingdeveloper productivity and consistency.
Rehosted a web application similar to Twitter, named Cruddur.View on GitHub