View My Experience Get In Touch

About

A proven DevOps/DevSecOps Engineer with over 8 years of experience in designing, implementing and managing secure infrastructure and cloud solutions. Skilled in AWS, Terraform, Ansible and a wide range of security tools and practices. Passionate about helping organisations achieve their security goals while maintaining agility and speed in delivery.

A self starter with a strong work ethic and a commitment to continuous learning and development. I thrive in fast-paced environments and am always looking for new challenges and opportunities to grow my skills and knowledge.

# quick stats

8+ years in DevOps/DevSecOps
14+ years of AWS experience
10000+ lines of Terraform written

Tech Stack

Infrastructure & Cloud

  • Ansible
  • AWS
  • Docker
  • Puppet
  • Terraform

Security

  • HashiCorp Vault
  • IAM
  • Palo Alto Networks
  • SAST / DAST
  • SonarQube
  • Wiz
  • Zero Trust

CI/CD

  • GitHub Actions
  • Jenkins

Observability

  • Grafana
  • Loki
  • PagerDuty
  • Prometheus

Languages & Scripting

  • Bash
  • HCL
  • PowerShell
  • Python

Platforms & OS

  • Git
  • Linux (RHEL/Ubuntu)
  • Nginx
  • Traefik
  • Windows Server
  • VMware ESXi

Experience

  1. DevSecOps Engineer

    Which?
    • Increased compliance with CIS AWS Foundations Benchmark version 3.0.0
    • Significantly reduced security vulnerabilities
    • Implemented Wiz for Cloud Security Posture Management (CSPM)
    • Implemented automated security testing in the CI/CD pipeline
    • Conducted regular security assessments
    • Helped implementing NIST CSF 2.0 framework
    • AWS
    • Wiz
    • GitHub Actions
    • Python
    • Terraform

  2. DevOps Engineer

    Department for Work and Pensions
    • Designed and implemented client VPN in AWS using Palo Alto
    • Automated patching and vulnerability management using Ansible
    • Deployment and configuration of Wiz for Cloud Security Posture Management (CSPM)
    • Hardening of AWS environments to meet CIS Benchmark & AWS best practices
    • Created hardened Windows Server and RHEL Gold Image AMI's using Hashicorp Packer
    • Architected and migrated internal DNS from Bind to AWS Route 53 with zero downtime or outages
    • Architected and deployed PKI infrastructure using Microsoft Certificate Authority
    • Implemented Role Based Access Control (RBAC) for all teams and roles
    • Implemented a semi-automated privileged access request management solution
    • Active Directory
    • Ansible
    • AWS
    • Docker
    • Hashicorp Packer
    • Hashicorp Vault
    • Jenkins
    • Microsoft 365
    • PowerShell
    • Puppet
    • Python
    • Terraform
    • VMware ESXi
    • Wiz

  3. Technology Consultant

    itsu Ltd
    • Acted as interim Head of IT handing over to the newly appointed IT Director
    • Opened itsu's first USA store

  4. Infrastructure Manager

    itsu Ltd
    • Delivered network migration across 70 retail locations causing zero downtime during trading hours
    • Managed implementation of Desktop as a Service (DaaS) solution across 71 locations
    • Introduced and lead a technology steering group
    • Managed implementation of Service Now across multiple departments
    • Active Directory
    • AWS WorkSpaces
    • Service Now

  5. Infrastructure Engineer

    itsu Ltd
    • 500 mailbox Office 365 migration
    • AWS migration
    • System Centre implementation
    • Atlassian Jira & Confluence implementation
    • AWS
    • Confluence
    • Jira
    • Office 365
    • SCCM
    • SCOM

  6. LOVEFiLM Infrastructure Engineer

    Amazon.co.uk

  7. 2nd Line IT Administrator

    Amazon.co.uk

  8. IT Support Technician

    LOVEFiLM

  9. Service Desk Technician

    Essex Shared Services Agency

Contact

Open to opportunities