About
I’m a platform engineer who has spent the last ten years building and automating the underlying systems that run our software. I helped move our environment from a handful of large virtual machines to a collection of smaller, more interchangeable services, using tools that let us deploy and manage those services automatically.
Over the years I’ve moved thousands of applications onto this new setup, put internal networking layers in place for hundreds of developers, and pushed for treating infrastructure the same way we treat code, long before it became the norm. My work is rooted in Linux, open source tools, and a constant focus on making systems stable and easy to observe.
Recently I’ve shifted my attention from package templates to looking at raw network traffic. With experience hardening Kubernetes clusters (CKA/CKAD/CKS certified), I’m trying to blend platform engineering with defensive security. I write about building infrastructure that can survive mistakes and attacks, about why things break, and about the overlap between modern cloud design, zero trust networking, and the attacker’s point of view that keeps us vigilant.
Welcome to a space where solid code meets thoughtful security.
Blog
Categories
- artificial intelligence (4)
- career development (13)
- certifcations (12)
- cliffnotes (11)
- cloud security (1)
- cyber (12)
- devops (6)
- general (2)
- infrastructure as code (3)
- platform engineering (3)
- threat intelligence (1)
Tags
ai ansible apps asset attacks automation careers certifications cloud-init communication dashboard deepdive detection devops docker encryption escalation frameworks fundamentals genai gitops hashing ids ips kubernetes llm mindset networking networks osi personal platformengineering playbook programming python response selfhosted siem tcpip threat traefik vpn vps vulnerability wordpress