About Me

Background

I am a fast, self-taught technologist with broad experience across Linux systems, cloud infrastructure, and automation. Based in Panama, I work as a freelancer building dependable systems and helping teams move faster by replacing manual bottlenecks with modern, automated tooling.

Infrastructure and Operations

My work focuses on the deployment, orchestration, and secure delivery of applications. I bridge the gap between code and production using a variety of virtualization and container platforms.

  • Orchestration: Practical experience with Kubernetes, Docker Swarm, VMware, and KVM.
  • IaC & Secrets: Defining infrastructure as code with Terraform and managing sensitive data via HashiCorp Vault.
  • Edge Routing: Deploying and optimizing Traefik, Nginx, and Apache with SSL/TLS certificates for production-ready environments.
  • Certifications: NetApp Certified Technology Associate.

Networking

I design and maintain robust networking foundations that ensure high availability and secure connectivity for distributed applications.

  • Core Routing & Switching: Expert handling of IPv4 and IPv6, complex subnetting, and routing protocols to optimize traffic flow.
  • Traffic Management: Implementing load balancing and DNS configurations to ensure system resilience and low latency.
  • Remote Connectivity: Setting up and managing secure VPNs for reliable, encrypted remote access.

Security and Perimeter Defense

I implement a multi-layered security approach to protect infrastructure from the edge to the application layer.

  • Edge Firewalls & Gateways: Extensive experience configuring and managing Fortigate, pfSense, and OpenWrt to control network traffic and secure boundaries.
  • WAF & Layer 7 Defense: Protecting applications using Cloudflare and AWS WAF, and implementing CrowdSec for collaborative, community-powered intrusion prevention (IPS).
  • Hardening & Mitigation: Specializing in network port auditing, strict firewall rule implementation, and DDoS mitigation strategies to ensure service availability.
  • Perimeter Control: Designing secure zones and DMZs to isolate critical workloads from public-facing services.

Identity and Access

I specialize in decoupling authentication from application logic to create secure, scalable access patterns.

  • Single Sign-On (SSO): Implementing modern identity providers using OpenID Connect (OIDC) and SAML.
  • Access Workflows: Designing authentication and authorization workflows to simplify user management across multiple web services.
  • Security Hardening: Ensuring that identity workflows follow the principle of least privilege to secure sensitive organizational data.

Development and Automation

I build tools that reduce operational overhead and increase developer velocity.

  • Automation Pipelines: Creating complex workflows using n8n and Git-based CI/CD patterns.
  • AI-Assisted Engineering: Leveraging AI tools to accelerate programming, debugging, and system architecture.
  • Monitoring & Storage: Setting up Grafana for deep observability and managing S3-compatible storage and backup workflows.

Approach

Being self-taught is my strongest asset; it has trained me to master new technologies rapidly and independently. I enjoy practical problem solving and building systems that are not just functional, but reliable and maintainable. I believe in applying the simplest tool that solves the problem effectively.

“Adaptability is about the powerful difference between adapting to cope and adapting to win.” — Max McKeown