Platform Engineer | U.S. Veteran | Security-Minded Infrastructure
Engineering the Perimeter. Securing the Core.
I build and secure the platforms that applications depend on. My focus is infrastructure architecture, identity-aware access, container orchestration, and security observability — from bare metal to production.
I'm a U.S. Veteran who transitioned into tech with a mission-first mindset: build things that are reliable, defensible, and intentional.
Rebuilding C²FHQ from the ground up — a tools platform for managing Factions in Torn City. The v2 migration moves to a more secure, efficient, and modern stack. Every architectural decision is intentional: I understand what each component does, how they connect, and how to build something that's elastic, scalable, and secure at its core.
Founding member of The Veteran Alliance — currently building out the web presence and digital platform.
My professional web presence — a two-domain platform for portfolio, projects, developer notes, and architecture documentation. Built with SolidStart, Three.js, and deployed on hardened Docker containers behind Cloudflare Tunnels.
valkyrienexus.com · valkyrienexus.dev
Designed and deployed production business websites:
I run a self-hosted platform that mirrors enterprise architecture patterns — not as a hobby, but as a working environment where I build, break, and harden real systems.
| Layer | Technology | Purpose |
|---|---|---|
| Virtualization | Proxmox VE | Hypervisor for isolated workloads |
| External Access | Cloudflare Tunnels | Zero-trust ingress, no exposed ports |
| Routing | Traefik | Dynamic reverse proxy with auto-TLS |
| Identity & Auth | Authentik | SSO, MFA, and policy-based access control |
| Orchestration | K3s | Lightweight Kubernetes for service deployment |
| Security & Observability | Wazuh | SIEM, intrusion detection, log analysis |
| Containerization | Docker | Multi-stage builds, non-root, read-only filesystems |
| Web Serving | Nginx | Rate limiting, security headers, CSP |
| CI/CD | GitHub Actions | Automated lint, test, build, scan, deploy |
This isn't a tech list — it's a trust chain. Traffic enters through Cloudflare, gets routed by Traefik, authenticated by Authentik, served from hardened containers, and monitored by Wazuh. Every layer has a job.
| Status | Certification |
|---|---|
| Earned | CompTIA Network+ |
| In Progress | AWS Certified Cloud Ops Engineer - Associate |
| Planned | CompTIA Security+ |
Infrastructure: Proxmox · Docker · K3s · Nginx · Traefik · Cloudflare Tunnels
Security: Wazuh · Authentik · CSP · Container Hardening · Zero-Trust Architecture
Development: TypeScript · SolidJS/SolidStart · Three.js · Node.js · Rust
Operations: GitHub Actions · GitOps · pnpm · Turborepo
Web Design: Responsive Design · SSR · Accessibility (WCAG AA) · Performance Optimization
Email: admin@valkyrienexus.com