About
I am an IT professional with a passion for cloud, infrastructure-as-code, and all things DevOps. I bring over 14 years of experience across software support, development, system administration, and DevOps, delivering secure, scalable, and efficient technical solutions.
I thrive on learning and solving complex problems, and I place a strong emphasis on collaboration, supporting my teammates while fostering shared growth in knowledge and skills. On a personal level, I’m approachable, positive, and enjoy contributing to dynamic, high-performing teams.
Experience
Led the development and scaling of cloud and DevOps capabilities for TilliT, a cloud-native MES platform for manufacturers. Operated as the sole DevOps engineer within a team of six, with end-to-end responsibility for infrastructure, pipelines, deployments, observability, and security. Worked closely with the CTO, driving best practices, security reviews, and platform improvements with a high degree of autonomy and trust.
Achievements
- Security & Compliance
- Rolled out AWS WAF, Security Hub, Inspector, Detective, and GuardDuty to strengthen application security.
- Implemented a nonce-based Content Security Policy and performed AWS Foundational Technical Review, remediating identified issues.
- CI/CD & Deployment
- Implemented CodeDeploy Blue/Green deployments for AWS Lambda and migrated pipelines from self-hosted GitLab to GitLab Cloud.
- Delivered multi-region deployments to support US and EU expansion and built reusable GitLab CI/CD components across projects.
- Observability & Monitoring
- Deployed Amazon Managed Grafana, custom metrics via Timestream, Grafana panel libraries, and annotations for deployment events.
- Introduced AWS Lambda Powertools for structured logging and CloudWatch Synthetics for uptime and login monitoring.
- Enterprise & Operations
- Migrated TilliT into its own AWS Organisation, implemented organisation-wide backup policies, and provisioned accounts for enterprise customers.
- Orchestrated tenant onboarding/offboarding and sandbox refresh processes, integrated AWS Marketplace onboarding, and authored operational policies (DR plans, SLAs, runbooks, data classification).
- Configured billing anomaly detection alerts with Slack notifications.
- Internal Tools & Platforms
- Built TilliT Admin portal using AWS PDK, React, Cloudscape, and NodeJS/CDK backend.
- Developed LIT CLI for AWS tasks, Bastion for safe DB command execution, and Release Planner for release tracking.
- Built Borealis for Aurora PostgreSQL major version upgrades and a Projen CDK template for new CDK apps.
DevSecOps role with a focus on empowering developers and breaking down silos. Simplicity over complexity to help drive DevSecOps adoption throughout the teams and business.
Achievements
- Designed, planned and executed large migration of core Cloud products from various open source offerings to native AWS offerings.
- From Terraform, Consul DNS, Consul KV, Vault, Nomad, HAProxy, RDS
- To CDK, Route53, Parameter Store, Secrets Manager, ECS Fargate, ALB, RDS Aurora
- Deployment and management of a highly available Observability platform. Services including Grafana, Cortex and Loki.
- Implementation of CodeDeploy BlueGreen deployments for ECS Fargate
- Build, deploy and maintain custom Windows AMI with HIPS (Health Identifier and PCEHR System) to allow developers to interface with My Health Record by the Australian Digital Health Agency.
- Collaborate with developers in building a common library of CDK constructs to help enforce best practices and consistency when deploying resources to AWS
- Implement a consistent tagging strategy across all development teams to allow better cost allocation and reporting
- Participate in fortnightly architecture workshops as well as yearly AWS Well Architected reviews
- From Terraform, Consul DNS, Consul KV, Vault, Nomad, HAProxy, RDS
- To CDK, Route53, Parameter Store, Secrets Manager, ECS Fargate, ALB, RDS Aurora
A platform approach with a centralised DevOps team to manage all cloud based infrastructure with fully automated, self-service stacks.
Achievements
- Collaborated on the planning, architecture and execution of two lift and shift projects into AWS. Built from the ground up using Jenkins, Ansible and CloudFormation.
- Reduced AWS costs for WebChoice/ClientManager products by 30% within the production account and 72% in the development account.
- Deploy monitoring platform to gain better application insights. Built using TIG stack (Telegraf, InfluxDB, Grafana).
- Deploy Kapacitor to existing TIG stack, integrate with on-call software OpsGenie, and create a development pipeline to facilitate easy tuning of alerts.
- Design and implement data obfuscation pipelines to allow the consumption of redacted data in BI and development environments for Console Cloud.
- Automate the restoration of ElasticSearch snapshots to provide development and operations historical logs on demand for faster troubleshooting and analysis of incidents.
- Develop a custom resource for CloudFormation that allows deployment of Aurora (MySQL) clones, and saves several hours in restore time.
- Orchestration of CloudFront CDN and Nginx Image Resize service migration to new AWS accounts.
- Deployment of a VPC, Network Load Balancer and VPC endpoint services, to allow other VPCs to use SOCKS server containers running in Fargate.
- Planning, architecture and execution of reducing corporate IT footprint of on-premise servers by leveraging AWS IaaS and PaaS offerings.
From Mexico to Colombia! Feel free to ask me anything about my trip, I love talking about it.
With less internal development work, my role at Console evolved into everyday IT Operations. Everything from user account management to managing server room infrastructure.
Achievements
- Planning and testing of multi-stage upgrades from MS Dynamics CRM 2011 to 2016 roll out.
- Planning and implementation of standard operating environments across different company departments using System Centre Configuration Manager and Microsoft Deployment Toolkit.
- Complete hardware and software audit of 3 offices and 4 data centres.
- Implementation of mobile device management using Cisco Meraki.
- Migration of VMWare ESXi virtual machines to Hyper-V.
- Improve security by implementing AppLocker/SRP, LAPS, automated rotation of switch/firewall logins, disabling SSH on root accounts, replacement of AD users with service users.
Promotion to Internal Systems Developer to help improve processes for our Brisbane support and finance teams
Achievements
- Complete audit of MS Dynamics CRM 4 customisations, refactor and implement deployable projects in preparation for upgrade.
- Migration of CRM customisation projects and all other internally developed tools from TFS to Git.
- Planning, testing and roll out of MS Dynamics CRM 2011 upgrade.
- MS Dynamics CRM customisation allowing call centre workers to process customer payments through Westpac PayWay API as a part of PCI DSS compliance.
- Liaising with clients and scoping requirements for the design and implementation of .NET data migration tools for onboarding.
Provided software and technical support to our customer base of over 3500 rental agencies across Australia and New Zealand.
Achievements
- Promoted to Tier 2 support.
- Invited to represent the company on multiple occasions at the Australian Real Estate Conference.
- Developed a .NET plugin for an in-house support tool that restored lost data for one of our iOS apps.
First level support for BT business customers, mostly troubleshooting broadband, telephone and mobile phone issues.
Skills & Proficiency
- AWS - VPC, EC2 ,ECS/Fargate, Route53, S3, DynamoDB, RDS/Aurora, SQS, SNS, Kinesis, Lambda, CodeDeploy, CloudFront, CloudMap, IAM & WAF
- IaC - CloudFormation, CDK and Terraform.
- Config Management - Ansible, SaltStack, Packer
- CICD & Source Control - Git, Bitbucket, Jenkins & GitLab
- Programming & Scripting tools - Python, Bash, Powershell, Typescript & Groovy. Some exposure to Kotlin, Java, .NET, Go.
- Observability & Monitoring - Telegraf, InfluxDB, Grafana, Cortex, Prometheus, Loki, ElasticSearch, Kibana, Logstash, CloudWatch
- Containers - ECS on EC2, ECS Fargate, Docker, Nomad
- Web Server/Proxy - IIS, Apache Tomcat, Nginx
- Databases - MySQL, Postgres, MSSQL
- Other - Atlassian suite, Agile Methodologies
References
References available upon request.