Real-world Azure infrastructure projects, each designed for security, cost efficiency, and operational clarity.
Designed and deployed a hybrid environment for a mid-sized enterprise, enabling seamless integration of on-premises infrastructure with Microsoft Azure using VPN Gateway and Entra ID Connect. The project prioritized authentication continuity, least-privilege access, and minimal migration downtime while keeping business operations uninterrupted throughout the transition.
Built reusable Terraform modules to automate Azure infrastructure provisioning end-to-end. Implemented autoscaling policies, reserved instance planning, and Azure Advisor integration to eliminate idle spend. Deployed via GitHub Actions CI/CD pipelines to ensure consistent, repeatable deployments across environments to reduce configuration drift and human error.
Implemented Conditional Access policies, MFA, and identity-based segmentation across Microsoft 365 and Azure. Hardened infrastructure using Defender for Cloud secure score recommendations and deployed Microsoft Sentinel for centralized threat detection with automated incident response playbooks, reducing mean time to detect and respond to security events.
Projects actively in development.
Reusable Terraform + Azure Policy templates giving small businesses a secure, governed Azure baseline out of the box.
Building a practical framework to map identity, devices, networks, applications, and data to Zero Trust controls.
Studying practical AI-powered cloud operations patterns with Security Copilot, M365 Copilot, and Azure OpenAI agentic workflows.