DevOps / Platform Engineering • Kubernetes • IaC • CI/CD
I build production-ready Kubernetes platforms that ship fast and stay reliable
Senior-level platform engineering: From bare metal K8s clusters to multi-cloud CI/CD pipelines. Production-first patterns for teams that need stability without slowing down.
About
Full-Stack Infrastructure Engineer
I specialize in building production-ready infrastructure that developers love to work with.
From setting up Kubernetes clusters from scratch to implementing CI/CD pipelines that deploy confidently, I focus on reliability, security, and developer experience.
My approach: High availability by default, infrastructure as code everywhere, and documentation that actually helps.
What I Do
Design & implement production Kubernetes clusters (bare metal & cloud)
Build CI/CD pipelines that deploy fast and fail safe
Configure high-availability databases (PostgreSQL, Redis) with automated failover
Implement security best practices (Vault, TLS automation, RBAC)
Troubleshoot complex infrastructure issues (DNS, networking, OAuth2)
Write comprehensive documentation & runbooks
Building marius:latest
A multi-stage build process defining the core principles, mindset, and passions that power everything I do
Projects
Helm Release Manager
Interactive terminal to explore my projects. Try commands like helm list or help
Terraform Infrastructure
Provision my tech stack infrastructure. Click "Provision Infrastructure" to deploy all resources, then expand any card to see detailed descriptions of my hands-on experience.
#Container & Orchestration
Kubernetes, Docker, Helm, and container orchestration tools
Kubernetes
Production cluster setup with bare metal and GCP GKE. Built 8-node on-prem clusters for Togo GIS, managed multi-cluster deployments at Deutsche Bank. Expert in operators (CloudNativePG, Vault), HA configurations, network policies, and Calico CNI.
Docker
Multi-stage builds, image optimization, and enterprise container management. Built secure base images, optimized layer caching, and managed Docker registries with JFrog Artifactory for my project at Deutsche Bank.
Podman
Rootless container deployments
Helm
Custom charts library, values templating, and dependency management. Designed reusable Helm chart libraries for my project at Deutsche Bank for standardized deployments. Expert in complex templating with Go templates and chart lifecycle management.
Kaniko
Daemonless container builds
#Cloud Platforms
GCP, Azure, and cloud infrastructure management
Google Cloud Platform
Led cloud migration from on-prem to GCP for my project at Deutsche Bank. Expert in GKE, Cloud Run, Compute Engine, Artifact Registry, Cloud SQL, GCS, Cloud DNS, IAM, VPC networking, Cloud Monitoring, and Logs Explorer. Terraform-managed infrastructure with Workload Identity Federation.
Cloud Run
Serverless container deployments
Compute Engine
VM management, cost optimization
Microsoft Azure
Entra ID (identity management)
Infomaniak
Managed Kubernetes cluster hosting for Togo GIS project. Initial infrastructure deployment before migration to bare metal cluster on their VMs.
Terraform
Infrastructure as Code for GCP and AWS-to-Azure migrations. Built modular Terraform configurations for VPC, GKE, IAM, Cloud Run, and multi-environment deployments. Advanced Terraform certification from NobleProg. Provisioned complete GCP infrastructure for my project at Deutsche Bank.
#Databases & Storage
PostgreSQL, Redis, MinIO, and data storage solutions
PostgreSQL
CloudNativePG operator, HA clusters, PostGIS
CloudNativePG
PostgreSQL operator for Kubernetes, 3-node HA
PostGIS
Spatial database extensions for GIS
Redis
Master-replica HA configuration
MinIO
S3-compatible object storage
#CI/CD & Automation
GitLab CI/CD, GitHub Actions, and automation tools
GitLab CI/CD
Multi-stage pipelines, Kaniko builds, automated deployments
GitHub Actions
Migrated Jenkins pipelines to GitHub Actions for my project at Deutsche Bank. Expert in Workload Identity Federation for secure GCP access, matrix strategies for multi-environment deployments, reusable workflows, and automated security scanning integration. Built hackathon CI/CD from scratch for Cloud Run.
Bash
Deployment automation scripts
Jenkins
Enterprise CI/CD pipelines, Groovy scripts, multi-stage builds. Managed legacy infrastructure for my project at Deutsche Bank with complex pipeline orchestration.
Ansible
Infrastructure automation and configuration management. Used for on-prem deployments, server provisioning, and application configuration at scale.
#Networking & Load Balancing
NGINX, Calico, DNS, and network infrastructure
NGINX
Ingress Controller, reverse proxy, TLS termination
Istio
Service mesh for microservices
NGINX Ingress Controller
Kubernetes ingress management
Calico
Kubernetes CNI v3.28.0
DNS Management
Google Cloud DNS, CoreDNS configuration
#Security & Secrets
Vault, cert-manager, Keycloak, and security tools
HashiCorp Vault
Centralized secrets management
External Secrets Operator
Vault to Kubernetes sync
cert-manager
Automated Let's Encrypt TLS certificates
Google Secret Manager
GCP native secrets management
Keycloak
OAuth2/OIDC provider
Network Policies
Kubernetes namespace isolation
SonarQube
Code quality and security scanning integrated into CI/CD pipelines. Enforced quality gates and compliance checks for my project at Deutsche Bank.
Veracode
Application security testing platform. Integrated SAST/DAST scans into automated release workflows with compliance gate enforcement for banking-grade security.
Prisma Cloud (Xray)
Container and artifact security scanning
#Monitoring & Observability
Prometheus, Grafana, and monitoring solutions
Prometheus
Metrics collection, alerting, and service monitoring for on-prem Kubernetes. Set up and maintained Prometheus stacks for my project at Deutsche Bank, configured alert rules, and integrated with Alertmanager for incident management.
Grafana
Visualization dashboards and monitoring. Built custom Grafana dashboards for Kubernetes metrics, application performance, and infrastructure health for my project at Deutsche Bank. Integrated with Prometheus for unified on-prem observability.
k6 Performance Testing
Load testing and performance benchmarking
#Languages & Frameworks
Python, Node.js, TypeScript, React
Python
Flask, FastAPI, Frappe framework
Node.js
Express APIs, Next.js websites
TypeScript
Type-safe development
React
Admin panels, frontends
#DevOps Tools
kubectl, k9s, Git, and other CLI tools
kubectl
Kubernetes CLI management
k9s
Terminal UI for Kubernetes
Git
Version control
Docker Compose
Local development orchestration
JFrog Artifactory
Universal artifact repository manager. Managed Docker images, Helm charts, and build artifacts with Xray security scanning for vulnerability detection.
Groovy
Scripting language for Jenkins pipelines. Developed complex shared libraries and reusable pipeline templates with OOP principles for standardized CI/CD.
Go Templates
Template engine for dynamic configuration generation. Used in Helm charts and Kubernetes manifests for environment-specific deployments.
Renovate
Automated dependency updates
Get in Touch
Contact Pipeline
Run the CI/CD pipeline to deploy my contact information. Each stage reveals a different way to connect.
prepare-environment
Stage 1 of 5
build-connection
Stage 2 of 5
test-social-links
Stage 3 of 5
deploy-professional-network
Stage 4 of 5
pipeline-complete
Stage 5 of 5