I’m a Platform Engineer with 4.5+ years of experience building secure, scalable infrastructure and developer-centric platforms across AWS and Azure. I specialize in Kubernetes-native tooling, GitOps workflows, and DevSecOps automation—empowering engineering teams with self-service capabilities and hardened pipelines.
At Bank of America and Blucom Technologies, I led initiatives that modernized CI/CD with GitHub Actions, ArgoCD, and SOPS; containerized legacy Java workloads; and scaled Kubernetes platforms for 250+ microservices. I’ve designed reusable Terraform modules, built FastAPI-based portals, and developed compliance automation that passed audits (SOC 2, OSFI B-13).
I write software in Python, Java, and TypeScript to solve infrastructure and security challenges at scale. I'm also the creator of azuresimplified.com, a platform to share cloud-native best practices with engineers worldwide.
Driven by clarity, ownership, and empathy, I bring together platform engineering, security, and developer experience to deliver production-grade systems that just work.
Experience: 5 years
Yearly salary: $70,000
Hourly rate: $50
Nationality: 🇺🇸 United States
Residency: 🇺🇸 United States
Experience
Platform Engineer-Internal Tools&GitOpsSystems
Bank of America 2024 - 2025
Replaced legacy Spinnaker pipelines with ArgoCD + Helm + SOPS, accelerating deployment velocity by 45% and reducing change failure rate by 30% across 6 environments. Develop FastAPI-based self-service portal with RBAC, caching, and GitHub integration; reduced developer wait time by 60% and handled 1.2K+ deployment requests/month. Created reusable, unit-tested Terraform modules used by 5+ teams to provision EKS, IAM, IRSA, ALBs, and VPCs with Calico policies; cut infra onboarding time by 70%. Integrated Trivy, ZAP, and SonarQube into GitHub Actions for 250+ microservices; blocked 300+ CVEs pre-deployment and auto-generated SBOMs per build. Led SEV-1/SEV-2 incident response and postmortems for payment systems (10M+ tx/day); improved MTTR from 2 hours to 45 mins via Grafana alerting, debug tooling, and RCA scripts. Engineered 'ShieldCI' a zero-touch OS compliance pipeline using GitHub Actions, Packer, and Ansible; blocked 20+ non-compliant AMIs/month, passed 3 SOC 2 & OSFI B-13 audits. Reduced $12K/month cloud waste using Python-based cost optimization bots and automated IAM policy linting. Built Backstage IDP for internal teams; implemented 6+ software templates, TechDocs, and automated onboarding flows for new microservices with GitOps & CI/CD. Collaborated with SRE and AppSec teams to standardize pipelines and security posture across all engineering verticals. Conducted weekly PR reviews and mentored 2 junior platform engineers on GitOps, Terraform, and Backstage architecture.
Software Engineer, Infrastructure
Blucom Technologies 2020 - 2023
Managed Maven build pipelines and legacy Ant/Groovy scripts for 80+ Java Spring Boot microservices, improving build stability and deployment automation. Containerized legacy monolith applications into Docker, leveraging multi-stage builds to reduce image size by 40% and cut deployment time by 50%. Collaborated in incident war rooms to resolve production outages, including tuning Kubernetes HPA and container resource limits to mitigate CPU throttling during traffic spikes. Developed modular Terraform infrastructure-as-code for provisioning AWS S3, RDS, and IAM resources; standardized documentation using terraform-docs to improve team adoption. Integrated security scanning tools (SonarQube, Trivy, OWASP ZAP) into CI/CD pipelines, automating detection and blocking of 200+ critical vulnerabilities prior to deployment. Built an internal Python-based CVE Auto-Notifier Bot that aggregated vulnerability feeds and generated actionable GitHub alerts, enhancing proactive security posture. Applied software engineering best practices unit testing, version control, code reviews to infrastructure and automation scripts, reducing deployment errors by 35%.
Skills
ansible
aws
cloud
defi
docker
kubernetes
security
devops