Secure model promotion
Model delivery pipelines with immutable artifacts, infrastructure-as-code, release checks, and rollback-aware operations.
TerraformArtifactsRelease gates
Platform engineering · DevSecOps · MLOps
I build secure paths from model to production.
I design and operate cloud platforms, data infrastructure, and delivery automation for systems that need to work reliably in production.
At Snowflake Summit 2026 · San Francisco · June 1–4
20+years in IT
100+public repositories
Cloud · Data · AIplatform focus
Expertise
Platform engineering for production systems.
My work sits at the intersection of infrastructure, security, data, and applied AI. The goal is straightforward: systems teams can run with confidence.
Data platform automation
Snowflake identity and key lifecycle automation through Terraform, role-based access controls, and Vault-backed operations.
SnowflakeTerraformVault
Kubernetes operations
Kubernetes platform operations across upgrades, autoscaling, workload delivery, secrets integration, and production diagnostics.
EKSAutoscalingSecrets
Private cloud networking
Private cloud networking patterns for service reachability, restricted access, and predictable workload placement.
AWSPrivate pathsIAM
Reliability engineering
Observability and reliability practices that turn operational failures into monitored, repeatable recovery paths.
ObservabilityAlertingRunbooks
Infrastructure automation
Reusable Terraform patterns, delivery governance, and hardened CI workflows.
TerraformCIPolicy gates
Selected patterns
Reusable approaches to platform work.
These diagrams describe the general shape of the work without exposing implementation details.
Promotion path
Artifact, verification gate, immutable store, controlled promotion, and health signal.
Private workload mesh
Event-driven workloads moving through private runtime, secrets boundary, data platform, and observability loop.
Platform control plane
Terraform modules, CI policy gates, cloud services, Kubernetes workloads, and operational telemetry.
Experience
Systems built and operated in the real world.
2022 – present
DevOps / Platform Engineer
Children's Hospital of Philadelphia
Leading platform engineering initiatives across cloud delivery, data infrastructure, Kubernetes, MLOps, and reliability.
2021 – 2022
DevSecOps / Full-Stack Engineer
Quality Web Solutions
Built cross-cloud infrastructure automation, containerized CI flows, and production Vault environments across dev, production, and DR.
Earlier experience
Systems administration, consulting, and managed services
Infrastructure and operations
Two decades spanning QA, systems administration, consulting, managed services, DevSecOps, and MLOps.
This is my personal portfolio. Views and independent networking activity here are my own and do not represent Children's Hospital of Philadelphia.
Personal projects
Things I build to keep learning.
Public GitHub
-- owned repos
-- followers
Automated research publication pipeline
A pipeline that curates academic papers into an indexed wiki using self-hosted runners and local language models.
AgentsvLLMROCmProxmox
XIAO C6 playground ↗
CircuitPython experiments for the ESP32-C6: WiFi 6, Bluetooth LE, NeoPixel, and embedded systems exploration.
CircuitPythonESP32BLE
Conversation extraction ↗
A practical utility for extracting shared AI conversations into reusable local content.
AI workflowsTooling
DevOps newsfeeds ↗
An automation project for working with infrastructure and engineering news sources.
PythonAutomationFeeds
Conversation topics
What should we talk about?
Pick a topic you would like to discuss. The result is anonymous: no name, no email, and no tracking.
Select a topic to add your signal.
Connect
Let’s compare notes.
I’m in San Francisco for Snowflake Summit 26 from June 1-4, 2026. I’m interested in the people building serious AI platforms, developer tools, secure infrastructure, and the systems behind them.