Skills

What I work with, and what I’ve shipped with it.

Grouped by area, with a line on where each one actually shows up in my work. Below that, a handful of projects from my time at Agero and Blue Apron that earned most of these skills in the first place.

Skill set

AWS

My core platform at Agero and Blue Apron. Multi-account org work, daily across compute, storage, networking, and managed services.

S3
RDS
Aurora
ECS
EKS
EC2
Lambda
OpenSearch
ElastiCache
Route 53
Systems Manager
Parameter Store
ECR

Infrastructure as Code

Terraform is the daily driver: multi-account modules, plan/apply pipelines, state strategy. CloudFormation and Ansible where I've inherited them.

Terraform
CloudFormation
Ansible

Containers & orchestration

EKS clusters running distributed microservices at Blue Apron, ECS-heavy at Agero. Custom Helm charts, image hardening, and version upgrades across environments.

Docker
Kubernetes (EKS)
Helm
ECS

CI/CD & deployment

Built and run CircleCI, Jenkins, and GitHub Actions pipelines in production. Authored a custom CircleCI Orb at Agero that replaced a third-party deploy product across the org.

CircleCI (custom Orbs)
Jenkins
GitHub Actions
Blue/green deploys
Canary deploys
Ephemeral environments

Observability & reliability

Datadog is my default. Dashboards and alerting at both jobs, an on-call rotation at Blue Apron, and annual disaster-recovery exercises at Agero.

Datadog
CloudWatch
Splunk
PagerDuty
Rollbar

Security

Hardened production images, resolved 100+ vulnerabilities flagged by Wiz, and own IAM and WAF baselines across AWS environments.

Wiz
Snyk
WAF
IAM
Image hardening
Vulnerability mitigation

Networking & CDN

VPC design, certificate management, and DNS-driven traffic moves. Drove a CDN-as-code project on Fastly via Terraform at Blue Apron.

VPC
DNS
Route 53
Cloudflare
Fastly
Certificate management

Databases

Postgres and Aurora are the everyday tools. Ops experience on Redis migrations, Elasticsearch/OpenSearch upgrades, and managed databases generally.

PostgreSQL
Aurora
MySQL
Redis (ElastiCache)
Elasticsearch / OpenSearch
MongoDB
DynamoDB

Languages

Python and Bash daily for automation. Go for internal tooling (the Blue Apron CLI). TypeScript across personal projects. Ruby and Groovy where the platform calls for it.

Python
Bash
Go
TypeScript
JavaScript
Ruby
Groovy

Web & mobile

Side projects keep me sharp on the application layer. Next.js + Supabase on Squadra, React Native + Rails on Stylistic, React + Tailwind on older work. I'm used to standing up a product end-to-end and shipping it.

Next.js 16 (App Router)
React 19
Tailwind CSS v4
Motion
Supabase (Auth, Postgres, Realtime, RLS)
React Native (Expo)
Ruby on Rails
next-intl (i18n)
Vercel
Render

AI & ML

Two angles. Claude and Copilot are part of my daily engineering loop. On the applied side, Xtock is my sandbox for HuggingFace models, fine-tuning, and serving with an eye on inference cost and latency.

Claude
GitHub Copilot
HuggingFace
Fine-tuning
SageMaker
Bedrock
MLOps

Work projects

A handful of projects from my employment history, kept short on purpose. Happy to walk through any of them in a call.

OpenSearch instance upgrade

Agero

Upgraded production OpenSearch from r6g.xlarge to r8g.xlarge across every environment without downtime or data loss.

Zero downtime across all environments including production
Migrated storage from GP2 to GP3 and coordinated with reserved-instance purchase
30% performance gain and 10% cost reduction

AWS OpenSearchTerraformAWS Reserved Instances

Ephemeral environments

Agero

On-demand environments spun directly from a PR to test features before merging, with a pre-warmed RDS pool for near-instant availability.

Pre-warmed RDS pool for fast provisioning
End-to-end CI/CD automation to stand up an env in minimum time
Cost-efficient, secure, hands-off cleanup pipeline

CircleCITerraformAWS RDSECS

CircleCI Orb architecture

Agero

Designed and built the org-wide CircleCI Orb to replace HarnessCD as the deployment solution for ECS services.

YAML configuration templates for ECS services and task definitions
Reduced pain points in the previous deploy flow
Improved developer experience and standardized deploys across teams

CircleCI OrbsECSYAML

“Herb” preview environments

Blue Apron

Preview environments that live inside the staging Kubernetes cluster, so feature branches can talk to real staging services.

Devs can test a feature branch against the real staging surface, skipping slow test runs when wanted
Integrates with existing CI/CD workflow, so there's no parallel system to maintain

Kubernetes (EKS)HelmJenkins

Fastly CI/CD pipeline with Terraform

Blue Apron

Self-serve pipeline that lets developers manage Fastly (CDN) services via Terraform without needing Terraform expertise.

Plan-on-PR, apply-on-merge with safe gating
Better version control, fewer security risks

TerraformFastlyJenkins

ElastiCache Redis migration

Blue Apron

Moved Redis instances to a different AWS account inside a strict 1-hour downtime window.

Mapped every dependent app and service in advance
Used Route 53 DNS records to switch traffic atomically
Snapshot + automated migration scripts to minimize human error
Hit the 1-hour downtime SLA

AWS ElastiCacheRoute 53Bash automation

Internal Go CLI tool

Blue Apron

Go-based CLI that gave developers an ergonomic interface to AWS, Kubernetes, and internal infra.

AWS login flow and resource access
Friendly Kubernetes management (restarts, logs, resource views)
Lookup tool for internal/external hostnames per app
Secrets and keys management via AWS Parameter Store

GoAWS SDKkubectl

Want the long version?

The résumé has dates, scopes, and outcomes formatted for ATS.

Hire me Contact LinkedIn Résumé