Security · Cloud · DevSecOps
Security Consultant & Cloud Security Engineer
I design, review, and harden cloud and application environments, focusing on practical risk reduction, secure infrastructure, and reliable automation.
At a glance
- Cloud security and DevSecOps across AWS and Azure
- Penetration testing and web application security
- CI/CD and GitHub Actions security automation
- Secure infrastructure and system design
About
I am a security-focused engineer with experience across cloud infrastructure, application security, and DevSecOps. I enjoy combining security engineering with clear architecture and automation so that teams can move quickly without losing control of risk.
My work spans security assessments, cloud environment hardening, secure CI/CD pipelines, and hands-on lab work to understand how systems fail in practice. I like projects where there is a clear threat model, measurable security improvement, and close collaboration between engineers and security.
Professional interests
Security engineering
- Cloud security architecture and secure-by-default designs
- Penetration testing and web application security research
- Threat modeling and practical risk reduction
DevSecOps & operations
- CI/CD security, especially GitHub Actions
- Infrastructure-as-code and repeatable hardening
- Monitoring, detection, and incident-oriented thinking
Skills
Security
- Cloud security (AWS, Azure)
- Application and API security
- Penetration testing workflows
- Threat modeling and secure design
Engineering
- Python and TypeScript
- Linux and container-based workflows
- Infrastructure-as-code and automation
- Monitoring and observability basics
DevSecOps
- GitHub Actions and CI/CD pipelines
- Security testing in build pipelines
- Policy-as-code concepts
- Collaboration with engineering teams
Contact
The best way to reach me is through LinkedIn or GitHub. I am open to roles and projects where security, engineering, and systems thinking come together.