I'm a Cloud Engineer
Designing secure, scalable, and resilient cloud infrastructure that lets teams ship faster without compromising security.
I'm a Cloud & DevSecOps Engineer based in Sterling, VA with 5+ years of experience designing and securing cloud-native systems on AWS. I specialize in multi-account architectures, CI/CD pipeline security, Infrastructure as Code, and container orchestration.
I believe security shouldn't slow teams down — it should be invisible, automated, and baked into every layer of the stack from day one.
End-to-end cloud and security engineering — from architecture to automation to compliance.
Designing scalable, highly-available multi-account AWS environments with Well-Architected best practices and cost optimization built in.
Building secure pipelines with integrated SAST, DAST, container scanning, and secret detection — shifting security left without slowing teams down.
Automating cloud infrastructure with Terraform and Ansible — fully versioned, repeatable, and drift-free environments across all stages.
Hardening Docker and Kubernetes workloads with OPA Gatekeeper, Falco runtime detection, network policies, and CIS benchmark compliance.
Industry-recognized certifications validating cloud architecture, security, and DevOps expertise.
A selection of projects I'm proud of. Each one taught me something new.
Automated multi-account AWS environment using Terraform and AWS Organizations. Enforces SCPs, centralized logging via CloudTrail, and guardrails across dev, staging, and prod accounts.
End-to-end secure pipeline integrating SAST (SonarQube), container image scanning (Trivy), DAST, and secret detection — all gated before merge. Reduced vulnerability exposure by 70%.
Production-grade EKS cluster hardened with OPA Gatekeeper policies, Falco runtime threat detection, network policies, and automated CIS benchmark compliance reporting via Ansible.
Have a project in mind or just want to say hello? I'd love to hear from you.