Tech

I work at the intersection of infrastructure, automation, and security — helping teams design and maintain systems that are fast, resilient, and scalable. My focus is DevSecOps: building pipelines and platforms that make good practices the default rather than the exception.

Most of my projects live in the cloud,  AWS or Azure for example, where I use Terraform to define infrastructure as code and enforce best practices with Sentinel and OPA. I also design patterns for GitLab CI/CD that bring developers closer to their infrastructure while keeping credentials secure and workflows predictable.

Secrets management is a big focus of mine. I’ve deployed and managed HashiCorp Vault across both EKS and Rancher environments, integrating it with OIDC, JWT auth, and CSI providers to give teams short-lived and auditable access to the resources they need. I enjoy balencing the of security with the creativity of automation.

I care a lot about making complex systems understandable. Whether it’s documenting a Terraform module, writing a migration plan, or teaching a team how to debug a failing pipeline, my goal is always the same: to turn these pain points into clarity. Technology only matters when people can use it with confidence.

Right now I’m experimenting with ways to bring DevOps ideas into creative workflows, using automation to support things like digital archiving, publishing, and even photo sequencing. The tools may be technical, but the motivation is always human: how to spend less time maintaining and more time making.