Cleared DevOps & Cloud Engineer

Résumé portfolio on a
live hybrid DevOps platform.

This site runs on a hybrid platform I designed, deployed, and operate end-to-end: a k3s cluster across x86 and ARM64 nodes with ArgoCD GitOps, live Grafana dashboards proxied through Cloudflare, multi-cloud Terraform spanning GCP Cloud Run, AWS S3, and Azure Key Vault, GitHub Actions with staged promotion and supply chain controls, OpenTelemetry instrumentation, and Zero Trust networking with no inbound ports.

K3s Cluster ArgoCD GitOps Prometheus + Grafana Terraform GitHub Actions Cloudflare Zero Trust AWS Azure GCP Secret Clearance
Coming next AI inference demo with multi-backend comparison · Dedicated secrets scan stage in CI · Ansible node lifecycle automation · Argo Rollouts canary deploys
View Repository Explore Platform ↓ Experience
Scroll
// Architecture

Live Platform Overview

A continuously evolving hybrid platform built through self-directed learning, a DevOps bootcamp, and hands-on iteration. The production pieces below are live today, and the remaining roadmap items are being added deliberately.

Control Plane

Custom x86 server running a Ryzen 3600X, RTX 5000, 32GB DDR4 on Ubuntu Server bare metal. k3s server node, GPU inference workloads, and management VMs.

k3s server · KVM/libvirt · GPU

Worker Nodes

3× Raspberry Pi 5 (8GB) in a Pironman 5 bramble rack. ARM64 workers handling distributed workloads with Coral TPU available for edge inference.

k3s agents · arm64 · Coral TPU

GitOps & CI/CD

ArgoCD app-of-apps for declarative deployments. GitHub Actions handles build → vulnerability scan → SBOM → signing → staged deploy and approval-gated promotion. Jenkins is planned as a separate comparison or nightly job.

ArgoCD · GitHub Actions · Supply Chain

Observability

Prometheus scrapes cluster and application metrics. Grafana dashboards render live panels below. OpenTelemetry traces on cloud services. All metrics edge-cached via Cloudflare.

Prometheus · Grafana · OTel

Zero Trust Networking

Cloudflare Access + outbound-only tunnel. No inbound ports open. Grafana and ArgoCD behind Zero Trust auth. Public site served via Cloudflare Pages + CDN.

Cloudflare Access · cloudflared

Multi-Cloud IaC

Terraform manages Cloudflare (DNS, Access, Workers), GCP (Cloud Run inference API), AWS (S3 artifact storage, IAM), and Azure (Key Vault for secrets management).

Terraform · AWS · Azure · GCP
// Observability

Live Ops & Platform Health

Platform telemetry collected via Prometheus, visualized in Grafana. Metrics gathered directly from Kubernetes nodes and workloads in real time.

Auto-refresh every ~30s · edge-cached for performance Loading cluster status…

Click any panel to expand · Panels served through Cloudflare edge proxy → Grafana render API behind Zero Trust Access.

// Capabilities

Core Technical Skills

Cloud Providers

AWS Azure (FlankSpeed) GCP Cloudflare

Containers & Orchestration

Kubernetes (k3s/EKS) Docker Podman Helm

Infrastructure as Code

Terraform Ansible CloudFormation GitOps

CI/CD & Delivery

GitHub Actions Jenkins GitLab Runner ArgoCD Staged Promotion

Observability

Prometheus Grafana OpenTelemetry Loki CloudWatch

Security & Compliance

IAM STIGs Trivy Cosign SBOM (Syft) Nessus

Operating Systems

Ubuntu RHEL / CentOS Windows Server

Virtualization

VMware ESXi KVM / libvirt Horizon VDI

Enterprise Tools

Active Directory ServiceNow MECM/SCCM Cisco ISE Splunk
// Certifications

Credentials

Az-200

November 2025

CompTIA Security+

November 2023

GCP Cloud Architect

May 2023

CompTIA A+

Renewed Jan 2019

Secret Clearance

Active since Sept 2024
// Experience

Professional Background

9+ years across cloud infrastructure, DevOps automation, enterprise systems administration, and secure network operations.

Azure FlankSpeed Administrator
Rite-Solutions / Arcfield — US Navy Contract
Newport, RI · Aug 2025 – Present

Assisted in planning and executing network migration from on-prem infrastructure to US Gov Azure FlankSpeed. Contributed to the team's first CI/CD pipeline using Azure FlankSpeed GitLab Runner for automating migration tasks. Monitored and optimized Azure VM lifecycle management and cloud spend. Worked across security, networking, and systems teams on compliance and vulnerability remediation.

AzureGitLab CIVM ManagementCost Optimization
IT Specialist
NUWC NAVSEA — Rite-Solutions / Arcfield
Newport, RI · Nov 2024 – Aug 2025

Administered large-scale Windows and Linux enterprise environments serving thousands of users. Managed Active Directory, VMware ESXi, Horizon VDI, and backup infrastructure. Diagnosed comply-to-connect issues across Cisco ISE, Trellix, and complex VLAN/firewall configurations. Led multiple base-wide tech refresh rollouts including reimaging machines to RHEL, CentOS, and Windows builds.

Operated across a wide toolset including Nessus, MECM, Ivanti RES Automation, iDRAC/iLO, Ansible, Foreman, Splunk, Axonius, SecretServer PAM, and Smart Card Authentication. Managed ServiceNow workflows for thousands of users. Collaborated with STIG, vulnerability management, server, and networking teams. Created SOPs to reduce recurring issues across multiple facets.

Active DirectoryESXiRHELAnsibleSTIGsNessusServiceNow
Manager — On-site & Remote Technical Support
Compass Computer Clinic
Jamestown, RI · March 2024 – Sept 2024

Delivered on-demand IT support for small businesses and individuals. Diagnosed and resolved hardware/software issues, configured networking infrastructure, and managed data recovery and backup solutions.

CRM Manager & On-Call Technician
Self-Employed
Austin, TX · Dec 2020 – Aug 2023

Provided remote and on-site IT support for businesses and independent clients. Configured user accounts, remote access, and email services. Diagnosed advanced IT issues and assisted Level 1 technicians. Performed server maintenance and network security enhancements.

On-Call Support Technician
C-side Computer Solutions
Jamestown, RI · Dec 2015 – Sept 2020

Provided data recovery, server maintenance, and networking solutions for residential and small business clients. Managed VPN, VLAN, VMware, and Active Directory deployments. Assisted small businesses in exploring Azure and AWS cloud features.

Tech Consultant
Liberty Carvings Inc.
Jamestown, RI · March 2015 – Present

Managed website development and content updates. Optimized inventory tracking with software solutions. Configured workstations, networking, and cloud-based storage. Provided cybersecurity recommendations and supported operational workflow automation.

// The Moving Pieces

My Homelab Hosted DevOps Project

This portfolio is the environment I built to demonstrate practical DevOps skills with real infrastructure, real deployment paths, and observable operations. I keep the live platform honest about what is already running today versus what is still on the roadmap.

Reproducible Infrastructure

Terraform manages cloud resources across three providers, and Kubernetes apps are versioned and synced through GitOps. Ansible node lifecycle automation is the next major operations layer I am adding.

→ Terraform + GitOps live · Ansible next

Safe, Progressive Delivery

Changes build, scan, generate SBOMs, sign, deploy to staging, and promote to production with approval. Argo Rollouts canary delivery is planned next rather than claimed as already complete.

→ Trivy + Syft + Cosign + staged promotion

Full-Stack Observability

Metrics from cluster, nodes, and applications. Traces from cloud services via OpenTelemetry. Live dashboards served through edge cached Grafana render API.

→ Prometheus + OTel + Grafana

Zero Trust Security

No inbound ports. Outbound-only tunnel. Role based access policies. Operational views separated from public content. STIG aligned hardening patterns.

→ Cloudflare Access + least privilege

Hardware-Aware Scheduling

The platform is being prepared for Coral edge TPU and NVIDIA RTX 5000 backed inference paths, with Kubernetes labels and affinity ready to support hardware-aware placement as the demo expands.

→ Node labels + affinity + multi-arch design

AI Workload Integration

Cloud inference on GCP Cloud Run is live as the current default path. The next milestone is a public multi-backend comparison across Cloud Run, lab GPU, and Coral-backed variants.

→ Cloud Run live · multi-backend demo next
// Education

Training & Education

WGU — Cloud Computing

B.S. · Projected Graduation 2027

Focus on AWS, Azure, GCP, and enterprise cloud architecture.

DevOps & Cloud Computing Bootcamp

Sept 2023 – May 2024

Hands-on training across Python, Linux, AWS (EC2, EKS, Lambda, S3, RDS, VPC, CloudFormation, IAM), Terraform, Docker, Kubernetes, Helm, Ansible, Jenkins, Prometheus, and Grafana. Capstone: full DevOps lifecycle for a microservice — CI/CD, container orchestration, and production deployment on AWS EKS.

Expanded panel Click anywhere to close · ESC