IT Generalist • Individual Contributor
Reliability, Automation, Security, and Hybrid Cloud Systems.
16+ years designing, building, and operating secure, automated, and distributed systems
across SaaS, data center, and multi-cloud environments.
Hands-on CTO • Startup mentality • Full-stack infrastructure ownership
Yes, the list below is long. Yes, interviewers tell me to "pick a lane."
I'm a generalist — that's the point. Curious about life, I fix what's broken, learn what's needed, ship what matters.
4 AWS Organizations, 60+ accounts. SSO with named profiles, VPCs, Security Groups, Cost Explorer optimization, AWS Health monitoring, CloudTrail auditing.
Terraform for EC2, EBS, S3, Lambda, DLM, CloudWatch. CDK for Kubernetes clusters. CloudFormation for legacy stacks. Multi-account state management.
Pages deployment, Workers, DNS management, Web Analytics. Email authentication (SPF, DKIM, DMARC) configuration and hardening.
WireGuard, OpenVPN, MikroTik RouterOS. BGP routing, VLAN segmentation, network hardening, cross-connects.
Dell PowerEdge servers, iDRAC management, SAS storage with multipath. Hyperconverged infrastructure, rack & stack, cabling.
Comprehensive employee lifecycle automation across 13+ systems: Google Workspace, M365 (9 tenants), Slack, Atlassian, AWS, Active Directory, and more.
Gmail API automation, Slack bot development, email parsing, automated notifications via Telegram. Inbox organization and compliance tools.
Chrome DevTools Protocol (CDP) for UI automation where APIs don't exist. React input handling, session management, screenshot capture.
Deep integration with enterprise APIs: Google Workspace, M365/Entra, Slack, Atlassian, BambooHR, KnowBe4, Zoom, JetBrains, Cursor, GitHub.
50+ automation scripts and tools. Flask web apps, API clients, data processing, OAuth flows, async operations, CLI tools with rich output.
TUI apps with Bubble Tea, system monitors, activity trackers. Goroutine management, CGO for macOS APIs, cross-platform CLI tools.
CDP automation, Slack admin tools, menu bar apps. Chrome DevTools Protocol, HID device control, desktop apps with Electron.
Swift menu bar applications, LaunchAgents, system integration. Keyboard remappers, usage monitors, typing speed trackers, Hammerspoon automation.
Native Android apps in Kotlin. Call screening service, system permissions, background services, ADB automation for testing.
React + TypeScript frontends, Flask backends, static sites. Dark mode UIs, responsive design, real-time dashboards, REST API design.
Zero-trust design, defense in depth, least privilege IAM policies, network segmentation, encryption at rest and in transit (KMS, AES-256).
CloudTrail log analysis (1.4TB+), SOC 2 / ISO 27001 controls, user access auditing, security incident investigation, compliance reporting.
Vulnerability management, automated patching workflows, security awareness training (KnowBe4), incident response playbooks, recovery verification.
Real-time alerting, SIEM integration, syslog aggregation, anomaly detection, server health monitoring (iDRAC), Telegram/Slack notifications.
Comprehensive onboarding/offboarding system integrating 13+ enterprise systems with full audit trail and verification.
Web app for team members to manage their own EC2 instances — start, stop, SSH key management, cost tracking with 30-day history.
Complete mapping and documentation of 4 AWS Organizations, 60+ accounts, SSO configurations, and cross-account access patterns.
macOS menu bar app + EC2 daemon monitoring user presence with Telegram alerts and duration tracking.
Swift menu bar app showing real-time Claude.ai usage limits with weekly projection and CSV history export.
Automated hourly collection of team usage statistics via API with historical data storage and trend analysis.
Automated collection of compliance evidence across AWS, Google Workspace, and M365 — access reviews, audit logs, policy enforcement snapshots.
Enterprise-wide device management deployment — Windows & macOS policies, compliance baselines, app deployment, conditional access integration.
Unified identity management across cloud and on-prem — SSO, directory services, device policies, RADIUS authentication.
macOS GPU/CPU/memory monitor in Go with TUI. Real-time metrics, per-process tracking, sleep detection via NSWorkspace, goroutine leak hunting.
Electron menu bar clipboard manager with encrypted storage, AI-powered naming (Ollama), 16K+ file indexed search, image capture with WebP thumbnails.
Lightweight Swift CGEventTap keyboard remapper. Replaces Karabiner without Virtual HID — no USB freeze issues. Typing speed tracker included.
macOS Ctrl+Shift language switcher with giant flag toast overlay. Direct TIS API, 0.4s animation, menu bar icon with current language.
Open source RGB control for Razer devices on macOS (keyboards, mice, mats, eGPUs). USB HID reverse engineering, works on Apple Silicon.
USB HID protocol reverse engineering for Glorious Model O mouse. Captured USB traffic, decoded 528-byte config packets, cross-platform Python driver.
Browser automation via Chrome DevTools Protocol when APIs don't exist. React input handling (nativeInputValueSetter), session hijacking, UI scraping for admin portals.
macOS window mover/resizer using ⌘⌥⌃ + mouse. Native APIs for buttery smooth movement — no jerky Accessibility API updates. Signed menu bar app.
Tampermonkey userscripts and Chrome extensions for workflow automation. Custom UI tweaks, keyboard shortcuts, admin portal enhancements.
Fixed display dropout issues in the popular terminal system monitor. Open source contribution to C++ codebase.
No-code MVP for medical tourism startup. Airtable backend, provider directory, procedure search — built in one night.
Custom domain email setup for local businesses — DNS records, SPF/DKIM/DMARC, mailboxes. Professional email without enterprise pricing.
Barcode scanner for HDD inventory. ML Kit + CameraX, SQLite database with 200+ drives, instant serial lookup. 100% offline.
PEV riding — EUCs and Onewheel at a chill 25 km/h. Safe cruising, battery systems, and enjoying the ride over chasing speed.
Surfskate carving and Long Distance skating — pumping, pushing, and mongo. Miami 24h Ultraskate finisher, 100 Mile Club.
Balance training on webbing — core strength, focus, and proprioception. From backyard sessions to park setups.
Precision temperature control for perfect results. British-style low-sugar lemon-ginger marmalade, steaks, and more. Food science meets engineering.
Consistent gym routine — compound lifts, progressive overload, and proper recovery. Whey isolate, tracking macros, optimizing for gains.
Feeding squirrels, rescuing lost skunks, coexisting with local fauna. The neighborhood critter whisperer.
Freshwater spa chemistry — chlorine, oxidizing shock, enzymes, alkalinity/hardness balancing. Filter cleaning, jets flushing, heater replacement.
Multi-ecosystem setup: Alexa Echo, Google Hub, Nest, Ecobee. Indoor air quality monitoring with comparative measurements. Emporia energy tracking.
Consistent step goals with Samsung Health challenges — regularly completing monthly targets. Data-driven fitness tracking.
Daily language learning — 2139 day streak, 1.2M+ XP, 61 Top 3 finishes. Diamond League regular.
DIY bicycle repairs — cable and brake pad replacement, chain and drivetrain cleaning, lubrication, gear adjustment. Keep 'em rolling.
Homemade kefir and творог (Russian cottage cheese) in Instant Pot yogurt mode. Also Russian salads (Olivier, etc.) via pressure cooking.
Dialing in espresso — grind size, dose, extraction. Cappuccino with microfoam experiments, milk texturing, latte art attempts.
Nikon journey: D90 → D7000 → Z6III. Macro, super macro, low light. Composition, exposure triangle, filters, prime lenses.
DIY woodworking — building shelves, furniture repairs, deck maintenance. Power tools, hand tools, measuring twice.
Expense optimization, fraud monitoring, subscription audits. Catching unauthorized charges, disputing fees, maximizing cashback.
Sleep apnea journey: CPAP → dental appliance. SpO2/HRV tracking via Samsung, Apple Watch, Garmin Index. Environment tuning.
"Automate everything that can be automated. Document everything that can't. Make systems so robust they're boring."
I believe the best infrastructure is invisible — it just works. Every manual process is a bug waiting to happen. Every undocumented system is a bus factor of one.
I take ownership of things others overlook. That neglected legacy system? The tribal knowledge nobody documented? The flaky integration everyone routes around? I adopt them, fix them, and make them reliable. Someone has to care — might as well be me.