About Me
Senior DevSecOps Engineer with 9+ years of experience building and securing
cloud-native platforms. Specializing in Identity and Access Management,
Zero Trust architecture, and AWS infrastructure at scale. Former CTO who
chose to go deep into platform engineering — bringing both business context
and technical depth to every system I build. Certified Kubernetes Administrator
currently leading IAM and infrastructure initiatives across 100+ microservices
and 10+ AWS accounts.
Work Experience
- Designed and implemented federated authentication across multiple identity providers (Amazon Cognito, Azure AD, Cidaas, Ory) using OIDC, enabling secure Single Sign-On across 100+ microservices.
- Enforced Zero Trust architecture across Kubernetes workloads using Ory Oathkeeper, Istio AuthorizationPolicies, and EnvoyFilters.
- Managed 10+ AWS accounts with landing zone architecture, reserved instances, and IAM-based access control using Terraform.
- Architected multi-VPC network topologies with Transit Gateways, private subnets, NAT Gateways, and VPN tunnels to ensure secure and scalable cross-environment connectivity.
- Enhanced observability and incident response using Datadog, Prometheus, and AWS CloudWatch.
- Built microservices in Go to support OIDC-based authentication and user session management.
- Collaborated across departments to align infrastructure and security initiatives with product and business requirements.
- Joined as the founding engineer and built the entire platform from scratch across frontend, backend, and mobile.
- Hired, mentored, and led a cross-functional team of 7 engineers spanning frontend, backend, mobile, and data science.
- Transitioned focus to DevOps — automating deployments with AWS CodeDeploy, Launch Templates, and ELB.
- Established CI/CD pipelines using Bitbucket Pipelines, enabling fast and reliable delivery cycles.
- Collaborated closely with C-level management and cross-departmental teams to align technical strategy with business goals.
