About
I’m a platform engineer who has spent the last ten years building and automating the underlying systems that run our software. I helped move our environment from a handful of large virtual machines to a collection of smaller, more interchangeable services, using tools that let us deploy and manage those services automatically.
Over the years I’ve moved thousands of applications onto this new setup, put internal networking layers in place for hundreds of developers, and pushed for treating infrastructure the same way we treat code, long before it became the norm. My work is rooted in Linux, open source tools, and a constant focus on making systems stable and easy to observe.
Recently I’ve shifted my attention from package templates to looking at raw network traffic. With experience hardening Kubernetes clusters (CKA/CKAD/CKS certified), I’m trying to blend platform engineering with defensive security. I write about building infrastructure that can survive mistakes and attacks, about why things break, and about the overlap between modern cloud design, zero trust networking, and the attacker’s point of view that keeps us vigilant.
Welcome to a space where solid code meets thoughtful security.
Blog
Categories
- career development (11)
- certifcations (10)
- cliffnotes (10)
- cloud security (1)
- cyber (11)
- devops (4)
- general (1)
- infrastructure as code (2)
- platform engineering (2)
Tags
ai ansible asset attacks automation backups careers certifcation certification cloud-init communication detection devops docker encryption escalation frameworks fundamentals gitops hashing ids ips kubernetes linux mindset networking networks osi personal platformengineering playbook plugins programming python response security siem sql tcpip threat traefik vpn vps vulnerability wordpress