Security Operations and Vulnerability Management
Ran vulnerability remediation programs across Rapid7 InsightVM and Snyk, built alert routing through OPA policy engines, managed scan infrastructure, and maintained remediation tracking across multiple business units.
Rapid7 | Snyk | OPA | CrowdStrike | remediation tracking
Cloud Platform and Infrastructure as Code
Migrated a Kubernetes platform from Kustomize to Terraform with Helm, managed multi-environment state and key vault migrations, set up Terraform Cloud agent pools, and improved deployment reliability across ECS and AKS environments.
Terraform | Helm | Kubernetes | AKS | ECS | Terraform Cloud
Offline Voice Assistant for the Field
Built a fully offline, CPU-only voice assistant for laptops with no internet — for use in the field where connectivity does not exist. Local speech recognition (Whisper), on-device language model (llama.cpp / Qwen), and packaged retrieval that refuses to answer when it lacks grounded knowledge. Ships as a deterministic offline Windows installer.
Whisper | llama.cpp | RAG | offline installer | CPU-only
EDI Order Processing System
Built a full EDI integration from scratch — purchase order intake (850), order acknowledgment (855), and advance ship notice (856) — connected to an ERP system through a Python service with Redis state management, validation pipelines, SPS Commerce API integration, and automated error handling with team notifications.
Python | Redis | SPS Commerce | EDI 850/855/856 | Docker
AI-Powered Messenger Chatbot
Designed and deployed an AI-powered Facebook Messenger chatbot with agentic workflow logic, message classification and labeling, and safety controls. Built a full stack service with API integration, multi-language handling, prompt tuning, and operational safeguards (rate checks, responder overrides, logging, and deployment hardening).
AI agents | prompt tuning | safety controls | API integrations
Self-Service Kubernetes Platform (AKS)
Designed and operate a client's analytics platform on Azure Kubernetes — clusters, networking, ingress, TLS, and GitOps delivery all provisioned as code (migrated Kustomize → Terraform → Pulumi). Built an admin dashboard that lets their team manage users and apps and provision infrastructure straight from the UI, backed by Pulumi, with Auth0 SSO and role mapping. Delivered the same platform pattern on AWS EKS for another client.
AKS | EKS | Pulumi | Terraform | FluxCD | FastAPI | Postgres | Auth0
Agentic Security Assessment Platform
Designed and built a multi-agent AI system that runs authorized penetration tests and incident-response investigations end to end. An orchestrator agent dispatches specialist agents across recon, vulnerability analysis, and reporting; every action is written to an immutable audit trail; intrusive steps require human approval; and findings are validated, false-positive-checked, and scored with CVSS and CWE mapping.
Python | FastAPI | Multi-Agent | LLM Orchestration | Docker
AI Security Operations Automation
Built multi-agent AI workflows for security operations — alert triage and enrichment, identity and cloud investigation, and IOC analysis delivered inside the team's chat tooling. Typed, guardrailed agents with structured and validated output, usage limits, and retrieval grounded in internal runbooks, integrated with EDR, cloud, and identity platforms.
Multi-Agent AI | RAG | Guardrails | EDR / Cloud / Identity | Python