Automating Cloud Infrastructure, CI/CD, and DevSecOps.
I build cloud infrastructure that ships reliably and doesn’t need babysitting. Multi-account AWS setups, containerised platforms on ECS and Kubernetes, and CI/CD pipelines secured with OIDC — all in Terraform.
10+ years across AWS and Azure.
Greenfield infrastructure — Design and provision a full cloud environment from scratch: networking, compute, databases, secrets management, and DNS. You get a working system and the Terraform code that produced it.
CI/CD pipelines — Automated delivery for frontend, backend, and database changes. Secured by OIDC — no stored credentials in your pipelines. Separate flows for PR previews and production deploys.
Multi-account AWS — Organisation setup, IAM Identity Center (SSO), account vending, budget guardrails, and delegated DNS. Governance done once, applied consistently across every environment.
Containerised deployments — ECS Fargate or Kubernetes. Container registries, service updates, health checks, and rollback strategies. Docker images built and pushed through CI, not by hand.
Cost and reliability — DR-aware architectures, autoscaling, and right-sized infrastructure. CloudWatch observability so you know what’s happening before your users do.
Travel Realm — Three-layer AWS infrastructure system across multiple accounts. Terraform-managed from organisation setup through to application delivery. Environment provisioning reduced from days to hours.
Azure secure deployment platform — End-to-end containerised deployment with Entra ID, Managed Identity, and federated OIDC — no stored credentials in any pipeline stage.
GPU infrastructure pipeline — On-demand Azure VM provisioning for AI workloads. Persistent model storage across VM teardowns. Single pipeline trigger replaces hours of manual setup.