WezTerm // 20240203-110809-5046fc22

BUILDING AND SECURING SYSTEMS.

Security-focused builder working on distributed systems, cloud infrastructure, and practical defense engineering.

View Projects View Research

Projects

View all ->

Research

View all ->

settings_input_component

Core Capabilities

Zero Trust Architecture

Identity-gated access, private service exposure, and policy enforcement across self-hosted infrastructure.

Infrastructure Automation

Reproducible provisioning and configuration management with Terraform, Ansible, and version-controlled workflows.

Network Segmentation

VLAN-based isolation, deny-by-default firewalling, and reduced lateral movement across internal services.

Detection Engineering

Host and network telemetry pipelines with Wazuh, Suricata, and monitoring built for attack validation.

Stack: Proxmox, OpenWRT, Terraform, Ansible, Cloudflare Zero Trust, Wazuh, Suricata, Linux

biotech

The Lab

A self-hosted security engineering environment built on a multi-node Proxmox cluster, focused on validating zero-trust access, segmented networking, infrastructure automation, and detection pipelines under realistic attack scenarios.

Access

Cloudflare Access, Authentik OIDC, secure tunnels, no direct public exposure.

Network

Segmented VLANs, policy-driven firewalling, and controlled east-west traffic.

Automation

Provisioning and configuration as code with reproducible deployment workflows.

Detection

Telemetry, alerting, and attack-simulation-driven monitoring validation.

“Built to secure, tested to fail, refined to hold.”

Get in Touch

Open to security, infrastructure, and research collaboration.

Contact