About
I focus on practical engineering work that improves trust, auditability, and day-to-day operability, especially in regulated or high-assurance environments.
Security Engineering • DevSecOps • Cloud & Platform Security
Security-minded engineer building secure delivery pipelines, GitOps workflows, and cloud-native platforms.
I design and secure delivery workflows that make applications easier to ship, verify, and operate across Kubernetes, CI/CD, and cloud-native environments.
Current Focus
- Building a K3s-based GitOps homelab with secure image promotion and policy enforcement
- Expanding into cloud and infrastructure automation with AWS, Terraform, and Ansible
- Exploring AI agentic development and operator-style workflows
- Building additional security, cloud, and CNCF projects to keep my skills sharp while I search for the right role
- Improving public demonstrations of secure delivery, GitOps, and production-minded engineering work
Tooling & Stack
Core Technical Areas
Platform
Kubernetes
Docker
Linux
OpenShift
K3s
Helm
Traefik
Kubernetes
Docker
Linux
OpenShiftDelivery
GitHub Actions
Flux CD
Kustomize
GHCR
Jenkins
Tekton
GitHub Actions
Jenkins
TektonSecurity
Trivy
Syft
Cosign
Kyverno
SonarQube
Nexus IQ
RMF
NIST 800-53
DISA STIG
TrivyCloud / Infra
AWS
Terraform
CloudWatch
CloudTrail
GuardDuty
Ansible
IAM
KMS
AWS
Terraform
AnsibleFeatured Project
K3s Resume Platform
Built a public-facing FastAPI application and delivered it through a K3s-based GitOps workflow with image publishing, SBOM generation, vulnerability scanning, artifact signing, automated dev updates, and controlled production promotion by digest.
- FastAPI application serving resume and RSS aggregation pages
- Dockerized runtime with health endpoints
- GitHub Actions build, publish, scan, and signing workflow
- GHCR image distribution and Flux-based GitOps automation
- Prod promotion by immutable digest