nocs@nocs.cloud ~ $

Senior Cloud Systems Engineer · AWS · Kubernetes · Security by Design

Tech Skills

Kubernetes

Platform engineering on EKS. RBAC hardening, Karpenter for node efficiency, policy-as-code with Kyverno.

EKSKarpenterKyvernoArgoCDHelm/OCI

Amazon Web Services

Deep daily use across the full AWS catalog, including GovCloud for government workloads and FedRAMP Moderate compliance.

GovCloudEKSIAMECRFedRAMP

Security by Design

Container hardening, supply chain security, Wiz.io across IaC, VM and container pipelines. Chainguard image scaffolding.

Wiz.ioChainguardRBACCVESBOM

Infrastructure as Code

Terraform and OpenTofu as daily drivers. Modular architectures, remote state, policy scanning in CI.

TerraformOpenTofuHCLWiz IaC

CI/CD & GitOps

GitLab CI/CD components catalog, ArgoCD ApplicationSets, OCI Helm chart registries. Fast, auditable delivery pipelines.

GitLab CIArgoCDFluxCDOCI

GNU/Linux & IT Security

Linux roots since 2008. Penetration testing, VA, hardware security research. OpenResty compiled from source.

LinuxFlipper ZeroProxmark3VA/PT

Work Experience

Senior Cloud Systems Engineer

01/2026 → present · Docebo S.p.A.

Kubernetes RBAC redesign and Kyverno policy-as-code rollout
Wiz.io integration: IaC scanning, VM analysis, container scanning in GitLab CI
Docker image hardening — UBI/RHEL attack surface reduction, Chainguard migration scaffolding
FluxCD → ArgoCD migration for faster, more reliable GitOps delivery
Karpenter node consolidation and EKS resource right-sizing
FedRAMP Moderate: Significant Change Reports + 3PAO technical interviews

Infrastructure Support Specialist

05/2022 → 01/2026 · Docebo S.p.A.

Well-architected cloud infrastructure on AWS and AWS GovCloud
GitLab CI/CD pipelines with Terraform/OpenTofu automation
Kubernetes orchestration with FluxCD continuous delivery
Datadog and Datadog GovCloud monitoring and observability

DevOps Engineer

09/2021 → 05/2022 · Acadevmy s.r.l.

Infrastructure design and zero-to-live deployments
CI/CD automation and Infrastructure as Code

Cloud Engineer

04/2018 → 05/2022 · M2D Technologies / wemovo GmbH

AWS infrastructure design, monitoring and security best practices
ISO 27001 compliance, Terraform IaC, Ansible automation

→ Request Full CV