DevSecOps Engineer with hands-on experience designing and maintaining cloud-native infrastructure at scale. I specialize in shifting security left, automating delivery pipelines, and driving platform reliability through observability and GitOps practices. Currently exploring AI/LLM infrastructure and MLOps tooling.
- 🏢 Currently building resilient telecom infrastructure
- 🔐 Passionate about embedding security into every stage of the SDLC
- 🚀 Advocate for infrastructure-as-code, GitOps, and zero-trust architecture
- 🤖 Exploring AI-assisted DevOps — LLMOps, model serving, and AI workflow automation
- 📍 Based in Hanoi, Vietnam
| Domain | Skills |
|---|---|
| Platform Engineering | Kubernetes (EKS/self-managed), multi-tenant RBAC, network policies, Helm, ArgoCD |
| CI/CD Automation | GitOps pipelines, GitLab CI / GitHub Actions / Jenkins, blue-green & canary deployments |
| Security (DevSecOps) | SAST/DAST, SonarQube, Trivy, OWASP, secrets management, firewall (Iptables, NACL, F5) |
| Observability | Prometheus + Alertmanager + Grafana, ELK stack, Fluentd, Zabbix, CloudWatch |
| Infrastructure as Code | Terraform + Terragrunt modules, Ansible playbooks, Pulumi, idempotent provisioning |
| Cloud | AWS (EKS, ECS, RDS, DynamoDB, S3, CloudWatch, CodePipeline) · GCP |
| Databases & Storage | PostgreSQL, MySQL, Redis, MongoDB, Amazon RDS, DynamoDB, Ceph, GlusterFS |
| AI/LLM Infrastructure | Model serving, LangChain pipelines, Ollama self-hosted LLMs, MLflow experiment tracking |
🔒 Security-first mindset ████████████████████ 100%
⚙️ Automation & IaC ████████████████████ 95%
☸️ Kubernetes & Cloud Native ██████████████████░░ 90%
📊 Observability & SRE █████████████████░░░ 85%
🐍 Scripting & Tooling ████████████████░░░░ 80%
🤖 AI / LLMOps ██████████████░░░░░░ 70%
Open to exciting DevSecOps / Platform Engineering opportunities 🚀