Junior Cloud Infrastructure & DevSecOps Engineer
First-year Digital Systems student at the University of Piraeus. I am an adept problem-solver passionate about secure cloud architectures, infrastructure automation, and homelabbing. I build robust, production-like environments. I indulge in resource-constrained bare-metal hardware and modern AWS cloud infrastructure just for the challenge. Or, as some might say, a continuous learning opportunity.
- Cloud-Native DevSecOps (AWS & IaC): Architected a fully automated, micro-segmented 3-Tier architecture on AWS. Utilized Terraform for infrastructure provisioning. Managed dynamic configurations across multiple Linux targets using Ansible. Deployed K3s for lightweight Kubernetes orchestration.
- Cross-Language Telemetry & Active Remediation: Authored a context-aware Bash mock daemon (
system_audit.sh) with dependency auto-remediation and PID manipulation. Developed Python-based network sentinels using rawAF_INETTCP sockets for port scanning and Banner Grabbing. - Containerized Cyber Ranges (Docker): Engineered isolated 2-tier vulnerability labs using Docker Compose and custom Dockerfiles. Implemented strict network isolation for database ports (
3306). Integrated automated Mock Data generation engines via Python and Bash pipelines. - Zero-Trust Bare-Metal Infrastructure: Managing a headless Arch Linux homelab. Orchestrating 10+ containers with all external traffic secured through a strict WireGuard VPN tunnel, alongside additional explicit UFW drop-policies.
- Database Architecture & Chaos Engineering: Configured a Windows 11 Guest OS within a Type-2 Hypervisor (VirtualBox) to host an isolated MS SQL Server. Engineered local Port Forwarding (NAT) to establish remote connectivity using SSMS, simulating real-world Client-Server environments. Mastered T-SQL by simulating data destruction, practicing execution plan optimization, and executing precise
RESTORE DATABASE ... WITH NORECOVERYoperations. - Version Control Strategy & Low-Level Memory: Managing infrastructure codebases with strict branching strategies (Feature/Main) and handling complex merge resolutions. Explored memory-level string manipulation in C. Built cross-language pipelines piping Bash outputs directly into Python.
- Cloud & IaC: AWS (VPC, EC2), Terraform, Ansible.
- Orchestration & Containers: Kubernetes (K3s), Docker & Docker Compose, GitHub Container Registry (GHCR).
- CI/CD & Observability: GitHub Actions, Trivy (Security Scanning), Grafana Alloy (Telemetry & Logging), Custom Bash Tooling.
- Networking & Security: TCP/IP, OSI Model internals, WireGuard, Nginx (L4/L7 Proxying), UFW / iptables, Pi-hole.
- OS Administration: Arch Linux, Kali, Ubuntu, Linux Mint, Windows, alternative compute environments (Crostini LXC, Crouton chroots, Kali Nethunter, Termux).
- Scripting & Tooling: Bash/Shell, Python, C, Git Version Control, YAML/JSON.
📫 Connect with me: [LinkedIn Profile](link to linkedin