My background in computer and network engineering has equipped me with a strong understanding of the complexities of modern cloud environments. It gives me a unique perspective, allowing me to understand systems from the bare metal up.
My main focus is on designing and implementing secure, highly available, and fully automated cloud infrastructures, where security and scalability are at the forefront of every design consideration.
NETWORKING
AZURE
COSMOS-DB
SPLUNK
CYBERSECURITY
DOCKER
TERRAFORM
GIT
GITHUB
Built a fully automated cloud deployment pipeline using Terraform and GitHub Actions to provision infrastructure, including Azure Container Apps. The workflow automatically applies Terraform state and securely deploys frontend assets to an Azure Storage account behind a dynamic firewall.
[+] Security: Integrated Checkov scans in the pipeline to ensure code quality and configuration compliance with best practices.
[+] FinOps: Cloud costs are projected prior to deployment using Infracost, providing real-time feedback on changesets and preventing budget overruns.
Built a containerized backend API using Node.js and Express.js, deployed as a serverless microservice via Azure Container Apps. The application utilizes the Azure Cosmos SDK to execute asynchronous data pipelines, managing persistent read and update operations within a NoSQL database environment.
[+] Security: Hardened the application layer by enforcing strict CORS origin policies and implementing IP-based rate limiting to prevent endpoint abuse.
[+] Data Architecture: Engineered asynchronous CRUD operations against a serverless Azure Cosmos DB instance to ensure high-availability state management.
Architected a strict Azure Zero Trust perimeter by enforcing default-deny network configurations across Azure Storage and Azure Container Apps environments. The infrastructure securely isolates internal workloads while maintaining controlled public accessibility.
[+] Network Security: Restricted public ingress exclusively to verified Cloudflare edge nodes, guaranteeing all external traffic routes through the Web Application Firewall.
[+] Access Automation: Developed automated Azure CLI workflows for Just-In-Time (JIT) access, safely puncturing and restoring the firewall dynamically during CI/CD pipeline deployments.
Conducted comprehensive AI Red Teaming and vulnerability analysis on NVIDIA machine learning models. Executed rigorous adversarial testing to evaluate security boundaries and identify systemic risks within the AI infrastructure.
[+] Vulnerability Evaluation: Executed advanced adversarial tactics to map model vulnerabilities, test security perimeters, and identify critical safety gaps.
[+] Architecture Refinement: Translated threat analysis into actionable engineering data, directly refining model architectures and improving defensive alignments.