DevOps Manager focused on AWS platforms, infrastructure automation, CI/CD, security, and reliable delivery.
I work across cloud architecture, platform engineering, release automation, and operational governance, with a strong focus on building secure and repeatable systems for multi-environment SaaS platforms.
- AWS platform architecture across development, staging, and production environments
- ECS/Fargate workloads, ALB, CloudFront, Cloudflare, Route 53, RDS, Redis, and OpenSearch
- Terraform and Atmos-based infrastructure as code
- GitHub Actions CI/CD with OIDC-based AWS deployments
- Secrets management using AWS Secrets Manager and least-privilege IAM
- Observability using CloudWatch, OpenTelemetry, and centralized logging
- Security and compliance alignment for ISO 27001, SOC 2, GDPR, and client assurance requirements
- Make secure defaults easy for engineering teams to adopt.
- Prefer repeatable infrastructure patterns over one-off manual fixes.
- Keep deployment pipelines simple enough to operate under pressure.
- Treat observability, access control, and rollback planning as part of delivery, not afterthoughts.
- Document operational decisions so future support and audits are easier.
- Production-grade ECS deployment patterns for Django and Celery workloads
- Secure GitHub-to-AWS deployment automation using OIDC
- Reducing manual infrastructure operations through reusable Terraform components
- Improving access governance, secrets handling, logging, and monitoring across cloud environments
- Practical AI security, governance, and token efficiency for engineering teams
ai-token-efficiency-playbook- drop-in instructions, prompts, and workflows to reduce token usage across AI coding agentsai-security-governance-checklist- practical AI security and governance checklist for engineering, DevOps, SaaS, and regulated environmentsaws-ecs-fargate-terraform-atmos- reusable Terraform/Atmos pattern for ECS servicesgithub-actions-oidc-aws-deployment- secure GitHub Actions deployment flow using AWS OIDC rolesaws-security-baseline-control-tower- AWS multi-account governance and security baselineecs-observability-otel-opensearch- ECS logging, telemetry, and OpenSearch observability pattern
See the project map for how these repositories fit together.
AWS, Terraform, Atmos, GitHub Actions, Docker, ECS Fargate, RDS, Redis, OpenSearch, CloudWatch, OpenTelemetry, Cloudflare, Microsoft Entra ID, IAM Identity Center, Secrets Manager, Linux, Python, Django, Bash.
Some older repositories on this profile are forks or learning resources. The pinned repositories are intended to represent my own architecture, automation, and platform engineering work.



