Cloud Native | DevOps Engineer | SRE | Cloud Engineer | MLOps | DevSecOps | Cyber Security Enthusiast
I build self-healing infrastructure and "Agentic DevOps" workflows. My focus is shifting security left and automating everything between the code and the cloud.
- DevOps: GitOps (ArgoCD), CI/CD Pipelines (GitHub Actions, GitLab CI, Jenkins), and Automation (Ansible).
- Infrastructure: Terraform, Terragrunt, OpenTofu, Crossplane, and GCS/S3 Backends.
- DevSecOps: Automated vulnerability triage (Gitleak, Semgrep, Aikido, StepSecurity, DefectDojo, Snyk, Falco), Wazuh Active Response, and Secure Container Runtime using Chainguard & Google Distroless.
- Cloud Native: Multi-region GKE, AWS EKS, and Alibaba Cloud ACK.
- Observability: Victoria Metrics, Vector, Loki, and Grafana (The LGV Stack).
Building the "Brain" for self-healing systems.
- Agentic SRE & DevOps Framework: Architecting autonomous self-healing loops and LLM-powered root-cause analysis. Designed skills for agents to monitor GKE thresholds and trigger circuit breakers/auto-rollbacksโreducing manual intervention.
- Agentic DevSecOps Triage: Implementing autonomous vulnerability triage using AI to filter false positives and orchestrate real-time threat hunting with Wazuh and Falco integration.
Production-grade pipelines and security research environments.
- DevSecOps E2E Pipeline: A comprehensive, end-to-end Node.js CI/CD pipeline featuring integrated security gating, OIDC-based auth, and automated vulnerability scanning.
- Vuln-Bank: A deliberately vulnerable security research environment. Used as a testbed for developing AI-integrated secure code review agents and testing WAF/IDS bypass scenarios.
๐ซ Let's secure the pipeline: LinkedIn


