Deep expertise across the modern cloud and DevOps technology stack, with hands-on production experience in enterprise environments. I work with the tools that matter, choosing the right technology for each challenge.
Cloud & Infrastructure
| AWS | EC2, EKS, RDS, S3, Lambda, VPC, ALB/NLB, Route53, MSK, Auto Scaling, IAM |
| Azure | AKS, Azure DevOps, Virtual Machines, Networking, Storage |
| Kubernetes | EKS, AKS, OpenShift, k3s, On-Prem deployments |
| Virtualisation | VMware vSphere/ESXi, Cloud Foundry, OpenStack |
| Containers | Docker, Buildah, Podman, Container security & scanning |
Automation & IaC
| Terraform | Multi-cloud infrastructure provisioning, modules, state management |
| Ansible | Configuration management, playbooks, roles, inventory management |
| Helm | Kubernetes package management, chart development, release management |
| Packer | Machine image automation, AMI/VM template creation |
| Flux | GitOps for Kubernetes, continuous delivery |
DevOps & CI/CD
| GitHub | Actions, Workflows, branch protection, code review |
| GitLab | CI/CD pipelines, container registry, security scanning |
| Jenkins | Pipeline as code, distributed builds, plugin ecosystem |
| Concourse | Pipeline automation, resource management |
| Artefact Management | Nexus, Artifactory, SonarQube |
Scripting & Development
| Python | Automation scripts, microservices, tooling development |
| Bash | Shell scripting, system automation, deployment scripts |
| PowerShell | Windows automation, Azure scripting |
| Node.js | JavaScript/TypeScript applications, tooling |
| Data Formats | JSON, YAML, XML, REST APIs |
Security & Compliance
| Secrets Management | HashiCorp Vault, certificate management, encryption |
| Access Control | IAM, RBAC, least privilege configurations |
| Compliance | PCI DSS, CIS Standards, security hardening |
| Container Security | Image scanning, vulnerability management, Prisma/Twistlock |
| Network Security | F5 WAF/ASM, Palo Alto, security groups, firewalls |
Observability & Monitoring
| Metrics | Prometheus, AlertManager, Grafana dashboards |
| Logging | ELK Stack (Elasticsearch, Logstash, Kibana) |
| Alerting | PagerDuty, ServiceNow integration |
| APM | Application performance monitoring, tracing |
| SRE Practices | SLIs/SLOs, error budgets, incident response |
Data Platforms
| Relational | PostgreSQL, MySQL, MS SQL, RDS |
| NoSQL | MongoDB, DynamoDB, Redis, Cassandra |
| Streaming | Kafka, MSK, message queues, RabbitMQ |
| Data Migration | Schema management, Flyway, data validation |
Networking & Load Balancing
| Load Balancers | F5 LTM/GTM, AWS ALB/NLB, Nginx, HAProxy |
| Ingress | Kubernetes Ingress Controllers, Nginx Ingress |
| DNS | Route53, Bind, dynamic DNS management |
| Cloud Networking | VPCs, VPNs, security groups, network architecture |
Methodologies & Best Practices
Agile/Kanban
Sprint planning, backlog management, iterative delivery
GitOps
Git as single source of truth, declarative infrastructure
DevSecOps
Security integrated into the pipeline, shift-left approach
SRE Principles
Reliability engineering, operational excellence, automation