GALLIS

SEC
Evan Gallis

$whoami

EG

I am a Security and Cloud Architecture Engineer that is extremely motivated when it comes to working on projects and learning new skills. Heavily involved in Kubernetes and cloud native approaches. My focus is in automated infrastructure deployment, devops, monitoring, and security. You’ll find me in the mountains or my homelab most days!

egallis31 github metrics

Security skills and tech stack technologies

Languages

Python, Bash, Powershell, Java

Ansible, Terraform, Bicep, ARM, Kuberenetes, Helm

Cloud & Infrastructure

Linux, Windows, MacOS, VMware, Azure, AWS, GCP, WAF, Firewall, Azure DevOps, Github

Kubernetes, Containerization, IAC, Observability, Security Architecture, Cloud Native, DevOps

Security Automation & Tooling

ArgoCD, Flux, Automated Playbooks, Azure Policy, Ansible, Terraform

Microsoft Defender, Azure Sentinel, Elastic Stack, Splunk, Grafana, Loki, Prometheus

Certifications

Microsoft Cybersecurity Architect Expert

Microsoft Azure Security Engineer Associate

Microsoft Azure Administrator Associate

AWS Solutions Architect Associate

HashiCorp Terraform Associate

CompTIA Security+ CE

Splunk Enterprise Certified Admin

Splunk Core Certified Power User

Splunk Core User

Home Lab

Constantly working on improving and testing new security concepts within my multi-site clustered home lab. The host platforms include physical, virtual, and Kubernetes, with Kubernetes run on VMware. All Kubernetes services are dynamically provisioned to configure SSL and DNS for external connectivity automatically. Full up to date security standards are followed and enforced utilizing CIS benchmarks. The entire monitoring system is deployed using Ansible/Terraform and utilizes the Elastic Stack, ECK (Elastic Cloud on Kubernetes), Grafana, and Prometheus across all types of OS using network attached storage. All secrets are stored using HashiCorp Vault, including issuing certificates for my internal PKI. All authentication is handled using Azure Hybrid AD with zero trust services provided by Cloudflare. You can view some samples towards the bottom of the page. Additionally, I contribute to the AbuseIPDB project with data based on all attacks that are detected. If you have any questions feel free to reach out! This all started as a hobby project during my university career at RIT, and has become a rabbit hole of learning. It has shown me where my true interests are! I've invested over 5 years of my time and many iterations to turn this into an enterprise grade stack with full industry standard observability and monitoring.

Hobbies + Conferences

Soccer, Skiing, Hiking, IOT, Networking, Home Lab, 3D Printing, Security

defcon

AbuseIPDB

Inquiries

EG

Evan - Current Status

Senior Security Engineer @ Autobooks
HQ in Detroit, MI
Fully Remote (US)

LinkedIn