Projects

Explore my portfolio of cloud architecture solutions, open source contributions, and technical projects

01

Enterprise Azure Cloud Foundation

Multi-Customer Production Platform

Built comprehensive enterprise-grade Azure cloud foundations for multiple customers, implementing end-to-end cloud infrastructure based on Microsoft's Cloud Adoption Framework and Well-Architected principles. Delivered complete landing zones covering all critical pillars.

Key Components

  • Management & Governance: Azure Policy, Management Groups, Blueprints, Resource Organization
  • Connectivity: Hub-Spoke Architecture, VPN/ExpressRoute, Azure Firewall, Network Segmentation
  • Identity: Entra ID Integration, RBAC, Conditional Access, Privileged Identity Management
  • Security: Microsoft Defender, Sentinel SIEM, Security Center, Compliance Frameworks
Azure Cloud Foundation Landing Zones Governance Connectivity Security Identity Terraform
02

Internal Enterprise GPT Solution

Azure OpenAI • Production

Developed a complete company-internal GPT solution leveraging Azure OpenAI Service, providing secure, enterprise-grade AI capabilities with data privacy and compliance. Full-stack implementation with authentication, search, automation, and secure key management.

Technology Stack

  • Identity & Security: Microsoft Entra ID, App Registration, Conditional Access
  • AI Services: Azure OpenAI Service, Azure AI Search (Cognitive Search)
  • Application: Azure Web App, Custom Frontend, API Integration
  • Infrastructure: Key Vault (Secrets Management), Storage Account, Automation Runbooks
Azure OpenAI AI Search Entra ID Web App Key Vault Automation Storage
03

Terraform Module Suite

Infrastructure as Code Library

Built an extensive Terraform module library for customers, providing reusable, production-ready infrastructure components following best practices. Comprehensive coverage of Azure services with standardized patterns for networking, security, compute, and governance.

Module Catalog

  • Networking: Hub Connectivity, Spoke Connectivity, Azure Virtual Network Manager (AVNM), Azure Firewall
  • Security & Access: Bastion, Privileged Identity Management (PIM), Network Security Groups
  • Compute & Containers: Azure Kubernetes Service (AKS), Virtual Machines, App Services
  • Governance: Azure Policy, Budget Alerts, Service Health Alerts, Log Analytics Workspace
Terraform IaC Azure Networking AKS Governance Modules
04

Cloud Foundation Automation Platform

Managed Service • DevOps

Developed a fully automated managed service platform for building cloud foundations at scale. Multi-cloud infrastructure automation with integrated CI/CD pipelines, security scanning, and self-service capabilities using modern IaC tools and scripting languages.

Platform Capabilities

  • Infrastructure: Management, Governance, Connectivity, Identity, Security automation
  • DevOps: Azure DevOps Pipelines, Service Connections, YAML Templates, Multi-stage Deployments
  • Technology Stack: Python, PowerShell, Pulumi, Terraform, YAML
  • Automation: Self-service provisioning, Compliance checks, Automated remediation
Python PowerShell Pulumi Azure DevOps YAML Automation CI/CD
05

Custom Web Development Projects

Multi-Customer Websites & Shops

Delivered custom websites and web applications for diverse customers across various industries. From e-commerce platforms to corporate websites and blogs, utilizing modern frameworks and content management systems tailored to each client's specific needs.

Project Portfolio

  • E-Commerce: Custom web shops with payment integration, inventory management
  • Corporate Websites: Professional business sites with CMS integration
  • Technical Blogs: Performance-optimized content platforms with SEO
  • Tech Stack: WordPress, React, Astro, Webflow, custom PHP solutions
WordPress React Astro Webflow E-Commerce CMS
06

CI/CD Pipeline Architecture

DevOps • Security

Designed and implemented comprehensive CI/CD pipelines with integrated security scanning, quality gates, and automated deployments. Production-ready pipeline templates for infrastructure as code and web applications with pre-commit hooks and security validation.

Pipeline Features

  • Deployment: Multi-stage deployments, Blue-Green, Canary releases
  • Security: Pre-commit hooks, SAST/DAST scanning, Secret detection, Dependency scanning
  • Infrastructure: Terraform validation, Plan/Apply automation, State management
  • Applications: Web app builds, Container builds, Automated testing, Performance monitoring
CI/CD Azure DevOps Security Scanning Terraform Pre-commit Automation

Interested in Collaborating?

Whether you need cloud architecture expertise, want to discuss a project, or explore technical solutions, I'm here to help bring your ideas to life.

Get in Touch View My CV