AppSec MCP server
Reference implementation — 8 tools, 5 ordered guardrails, 3 pluggable LLM providers, end-to-end OpenTelemetry observability.
Portfolio
Published platform engineering and application security work — the reference implementations and architecture write-ups behind the GenAI/AppSec advisory practice.
GitOps on AWS EKS
Enterprise GitOps platform on EKS — multi-cluster DEV/PROD isolation, ArgoCD, and security controls.
GitOps platform architecture
GitOps platform architecture suitable for high-volume financial services environments.
Backstage developer portal
Backstage internal developer portal — self-service platform for a regulated enterprise.
Platform engineering evolution
From reactive operations to self-service — Crossplane, Temporal, and AI-augmented developer experience.
QuestDB on Azure
Tiered-storage architecture diagrams — QuestDB Enterprise feeding Azure Blob with declarative lifecycle management.
GitHub → GitLab migration
Migration guide and approach for moving from GitHub to GitLab.
Architecture review
Architecture review of the GitOps demo environment.
Enterprise observability
OpenTelemetry metrics, traces, and logs unified in Grafana with Tempo and Loki backends. A parent span per request, child spans for each guardrail and downstream call, and a shared trace ID injected into every log line — one correlation ID ties spans, traces, and logs together.
Claude Skills & context engineering
Field notes on progressive disclosure — how Claude Skills change the economics of agentic coding work.
Amazon Q Developer POC
Structured 4-week proof of concept — org setup, repo-trained customizations, baseline metrics, and a go/no-go decision package.
Technical leadership profile
Executive-director-level background spanning platform engineering and security.
