I build the platform.
Then I write about why it breaks.
Staff engineer specializing in identity systems, GitOps, and Kubernetes platforms that scale without the chaos.
01. About
I'm a Staff Software Engineer focused on platform and identity systems — the infrastructure that lets engineering teams ship fast without breaking security or each other.
I've spent years running multi-tenant Kubernetes platforms across AWS and GCP, replacing managed identity services with open-source IAM, and making GitOps actually work beyond 5 teams.
I write about what I learn, because building it is only half the battle.
02. Core Expertise
Cloud Platforms
AWS EKS, GKE, multi-cloud strategies, and highly available multi-region footprints designed for operational resilience.
Identity & IAM
Open-source identity stacks (ORY Hydra/Kratos/Keto), OAuth2 token flows, zero-trust architectures, and multi-tenant auth borders.
GitOps & Delivery
Normalizing app delivery with ArgoCD, Kustomize, and Helm. Building golden paths and embedding policy-as-code.
Observability & Ops
OpenSearch, Elastic, Dynatrace, New Relic. Meaningful SLOs, actionable alerting, and prioritizing incident learning over finger-pointing.
03. Featured Work
Platform Engineering
GitOps-first multi-cloud platform
Normalized app delivery across clouds with tenant-aware namespaces, promotion pipelines, and SLOs baked into templates.
"Blast radius alignment is a delivery problem, not just a security one."
Identity & Tenancy
Open-source IAM replacing AWS Cognito
Replaced managed identity with open-source IAM ā auth boundaries that survive org growth, audits, and SSO complexity.
"Cost and lock-in tradeoffs should be made explicit before you're three years in."
Reliability & Operations
Platform reliability guardrails
Paved-road patterns and pre-flight checks so platform changes ship fast without breaking security or compliance.
"Guardrails beat gates. Teams self-serve when the path is obvious."
Deep dives coming soon.
Iām currently writing up the architecture decisions behind these systems. Get the next post in your inbox ā no noise, just deep dives.
Want to work together?
I'm available for conference talks and podcasts on platform engineering, identity systems, and GitOps at scale.
Get in touch