DevOps &
Cloud Infrastructure
Engineering
7+ years building production infrastructure across AWS, Azure, GCP, and IBM Cloud. CKA + Terraform Associate.
Production work
Multi-Cluster EKS Platform (interview-agent)
Designed and operated dev/prod EKS clusters running an interview-agent platform with Temporal, RDS PostgreSQL, and Python/Go microservices.
IBM Cloud IKS Deployment — Car Resale API
Production IKS deployment of an ML-backed car resale API with cert-manager, Let's Encrypt, and modular Terraform across dev/staging/prod.
SCIM Connector — IBM i (AS/400) ↔ Okta
Integrated legacy IBM i (AS/400) identity stores with Okta via SCIM, including provisioning lifecycle and audit logging.
RFP Engine Platform (.NET 10 + React 19)
Docker + Bitbucket Pipelines CI/CD for a .NET 10 / React 19 RFP automation platform with ingress on rfp.beyondid.io.
Softcap Agent — FastAPI on EC2
Production FastAPI deployment with Poetry, Docker, Jenkins, Nginx, and Let's Encrypt SSL on api-softcap.fuseagents.ai.
Engineering blog
Debugging Fluent Bit IAM on EKS — a story in three permissions
Why your pods log fine in dev and silently swallow logs in prod, and the three IRSA misconfigurations that cause it.
Modular Terraform for IBM Cloud — what actually scales
IBM Cloud's Terraform provider is fine. Your module structure is what determines whether you ship.
What I build
Multi-Cloud Kubernetes Architecture
# EKS, AKS, GKE, IKS — designed for your actual workload, not a vendor demo.
End-to-end Kubernetes architecture across AWS, Azure, GCP, and IBM Cloud. From cluster design and IAM to ingress, observability, and disaster recovery.
CI/CD Pipeline Engineering
# Pipelines that ship — Jenkins, GitHub Actions, Bitbucket, GitLab.
Build, test, scan, deploy. Pipelines designed around your branching strategy and compliance requirements — not the tool's defaults.
Infrastructure as Code Audit
# Terraform modules that scale across teams — not just clusters.
Audit and refactor existing Terraform/CloudFormation into modular, reusable, testable IaC. Bring in policy-as-code where it earns its keep.
Cloud Migration & Modernisation
# Lift, shift, and actually modernise
End-to-end migration of on-premise workloads to AWS, Azure, or GCP — with re-architecture to take full advantage of managed services and cloud-native patterns.
Site Reliability Engineering
# SLOs, error budgets, and on-call sanity
Embed SRE practices into your engineering org: define SLIs/SLOs, build error budgets, design on-call runbooks, and move your team from reactive firefighting to proactive reliability.
DevSecOps & Security Hardening
# Shift security left — all the way left
Integrate security scanning, secrets management, and policy enforcement into your CI/CD pipelines so vulnerabilities are caught at commit time, not in production.
Observability & Monitoring Setup
# See everything, page on what matters
Design and deploy a full observability stack — metrics, logs, traces, and dashboards — so your team has the context to debug fast and understand system behaviour at scale.
Platform Engineering
# Build the paved road your devs actually use
Design and build an Internal Developer Platform (IDP) — golden paths, self-service environments, backstage portals, and developer toolchains that reduce cognitive load and boost shipping velocity.
Cost Optimisation & FinOps
# Stop paying for what you don't use
Audit your cloud spend, eliminate waste, right-size workloads, and build a FinOps practice so engineering and finance teams share a single source of truth on cloud costs.