// DevOps & Cloud Security Engineer → Solutions Engineering
7 years designing and securing enterprise-scale AWS infrastructure. Targeting Solutions Engineer and Pre-Sales Architect roles at cloud security companies across EMEA and APAC.
Previously at
Background
7+ years designing, automating, and securing enterprise AWS infrastructure at scale. Authored platform RFCs, evaluated ZTNA vendors for organisation-wide security strategy, and presented architecture trade-offs to engineering leadership. Now making that experience customer-facing.
Multi-region AWS (including China and US Gov), EKS at scale supporting 2M+ monthly transactions, Terraform multi-tenant restructuring, Spacelift-driven ClickOps-free pipelines.
Evaluated Cloudflare Zero Trust, Netskope, and Palo Alto ZTNA for organisation-wide adoption at Cisco. Deployed Okta, Azure AD, Ping Identity with SCIM lifecycle automation across 1,000+ EKS clusters.
RFC and architecture design document authorship. Presented infrastructure trade-offs to senior engineering leadership and coordinated cross-functional stakeholder discussions across security, compliance, and engineering at Cisco and Mercor.
Solutions Engineer, Pre-Sales Architect, Security Solutions Architect at cloud security, identity, and infrastructure companies. Open to EMEA and APAC — requires employer-sponsored visa.
Project
8 production-grade n8n automation flows. An alert enters as raw webhook data and exits as a scored, enriched, ticketed, and remediated action item — with zero manual triage.
FLOW 01
Alert Ingestion + Normalisation
Webhook receives alerts from Wiz, CrowdStrike, and Datadog. Normalises across schemas. Logs to Google Sheets. Slack ping on critical/high.
webhook · sheets · slackFLOW 02
AI-Powered Triage + Scoring
GPT-4o-mini scores each alert 1–10 on blast radius, resource exposure, and attack pattern. Writes risk score and rationale back to Sheets.
openai · gpt-4o-miniFLOW 03
Jira Ticketing + Deduplication
JQL deduplication before every ticket. Creates with priority, SLA due date, and owner assignment — or adds a comment to the existing ticket.
jira · sheets · slackFLOW 04
Weekly Security Posture Digest
Monday 9am. MTTR, true positive rate, top 3 findings, severity breakdown. Slack Block Kit + HTML email to stakeholders.
sheets · slack · gmailFLOW 05 — AI
Anomaly Detection
30-day rolling baseline per resource type. Scores frequency spikes, severity jumps, and novel patterns. Mistral confirms behavioural anomaly vs statistical noise.
mistral-7b · openrouterFLOW 06 — AI
Multi-Model Consensus
Two LLMs triage the same alert independently. Agreed results are accepted. Contested results (divergence ≥ 3pts) route to human review in Slack.
llama-3 · qwen · openrouterFLOW 07 — AI
Threat Intel Enrichment
MITRE ATT&CK + NVD CVE lookups per confirmed finding. Qwen synthesises TTP IDs, threat actor groups, related CVEs, and detection gaps.
qwen · mitre · nvd · openrouterFLOW 08 — AI
Automated Remediation
Generates exact AWS CLI fix, Terraform prevention snippet, estimated fix time, and production risk per confirmed finding. Posted directly to the Jira ticket.
mistral-7b · openrouterDemo Series
Each video is a live walkthrough of one flow — problem framing, n8n canvas, test payload, output. No slides.
Flow 01 — Alert Ingestion
Wiz · CrowdStrike · Datadog normalisation
Flow 02 — AI Triage
GPT-4o-mini risk scoring live
Flow 06 — Multi-Model Consensus
Llama 3 vs Qwen — what happens when they disagree
Flow 08 — Remediation
From alert to Terraform fix in under 2 minutes
Technical depth
Get in touch
Targeting Solutions Engineer, Pre-Sales Architect, and Security Solutions Architect roles at cloud security, identity, and infrastructure companies. Requires employer-sponsored visa.