I am a Security and Cloud Architecture Engineer that is extremely motivated when it comes to working on projects and learning new skills. Heavily involved in Kubernetes and cloud native approaches. My focus is in automated infrastructure deployment, devops, monitoring, and security. You’ll find me in the mountains or my homelab most days!
Constantly working on improving and testing new security concepts within my multi-site clustered home lab. The host platforms include physical, virtual, and Kubernetes, with Kubernetes run on VMware. All Kubernetes services are dynamically provisioned to configure SSL and DNS for external connectivity automatically. Full up to date security standards are followed and enforced utilizing CIS benchmarks. The entire monitoring system is deployed using Ansible/Terraform and utilizes the Elastic Stack, ECK (Elastic Cloud on Kubernetes), Grafana, and Prometheus across all types of OS using network attached storage. All secrets are stored using HashiCorp Vault, including issuing certificates for my internal PKI. All authentication is handled using Azure Hybrid AD with zero trust services provided by Cloudflare. You can view some samples towards the bottom of the page. Additionally, I contribute to the AbuseIPDB project with data based on all attacks that are detected. If you have any questions feel free to reach out! This all started as a hobby project during my university career at RIT, and has become a rabbit hole of learning. It has shown me where my true interests are! I've invested over 5 years of my time and many iterations to turn this into an enterprise grade stack with full industry standard observability and monitoring.
Senior Security Engineer @ Autobooks
HQ in Detroit, MI
Fully Remote (US)