Cloud migration and platform standardisation
Moved workloads onto a more repeatable platform with clearer ownership, safer deployment paths, and better cost visibility.
About
Senior cloud & platform engineer
Zurich · AWS Certified · Google Cloud Certified · Microsoft Azure
I help engineering teams make production platforms predictable: cloud migration, infrastructure automation, secure baselines, cost-aware capacity design, release reliability, and recovery planning.
My work spans cloud platforms, Linux and web operations, infrastructure as code, application delivery, data systems, CI/CD, and the CMS and framework stacks teams actually run in production. The tools vary by environment; the constant is making systems easier to ship, audit, scale, and hand off.
Before focusing on infrastructure, I spent years shipping full-stack web platforms. That background helps me design platform work around how software teams actually build, ship, and debug. Infrastructure as Code is how I make that work repeatable and hand-off ready.
I work across AWS, Azure, Google Cloud, and Alibaba Cloud. This site collects practical notes from that work.
Certifications
Formal validation across the major cloud platforms I work with in production.
AWS Certified
- Solutions Architect - Professional
- Developer - Associate
- SysOps - Associate
Google Cloud Certified
- Professional Cloud Architect
Microsoft Azure
- AZ-305: Azure Solutions Architect Expert
Representative platform work
Selected engagements across migration, cost control, security baselines, scaling, and delivery. Each example is framed by operational ownership and outcome.
Cloud cost optimisation programme
Reduced waste and improved cost predictability without compromising production reliability.
Scaling and load-balancing architecture
Platforms held under sustained and peak traffic with clearer scaling paths and operational runbooks.
Golden image and hardening pipeline
Gave teams repeatable, hardened server baselines with faster provisioning and fewer configuration surprises.
RBAC and access governance
Tightened production access with clearer ownership, auditable permissions, and safer operational hand-offs.
Capabilities
Selected capabilities grouped by operating responsibility, from cloud architecture and automation to application platforms and production hardening.
Cloud platforms
- AWS
- Azure
- Google Cloud
- Alibaba Cloud
- DigitalOcean
- Cloudflare
Infrastructure automation
- Terraform
- Pulumi
- AWS CDK
- Azure Bicep
- Google Cloud Deployment Manager
- Ansible
- Packer
- Chef
- Docker
- Bash
- Golden Images
Production operations
- Linux
- Nginx
- Apache
- CI/CD
- GitHub Actions
- Jenkins
- GoCD
- CircleCI
- Scaling
- Load Balancing
- Batch Processing
- Observability
- Recovery
Security and governance
- RBAC
- Hardening
- Image Hardening
- TLS
- Network Controls
- WordPress Hardening
- Change Control
- Access Review
Cost, scale, and migration
- Cloud Migrations
- Cost Optimisation
- Workload Right-Sizing
- Spot Instances
- Autoscaling
- Capacity Planning
- Serverless
Data and messaging
- PostgreSQL
- MariaDB
- MySQL
- MongoDB
- Redis
- Memcached
- Elasticsearch
- Kafka
- RabbitMQ
- ActiveMQ
- Data Lakes
Application platforms
- PHP
- Python
- Node.js
- Ruby
- WordPress
- Laravel
- Symfony
- Django
- Flask
- Strapi
Frontend and delivery tooling
- Playwright
- Next.js
- Astro
- Eleventy
- Gatsby
- Angular
- Vue
- Tailwind CSS
- Bootstrap
- Materialize
Interested in cloud migration, platform design, automation, or production debugging? Get in touch.