Summary

Cloud Engineer specialising in Infrastructure-as-Code using AWS CDK (TypeScript), with hands-on experience designing secure VPC architectures, implementing zero-downtime ECS Blue/Green deployments, and building event-driven serverless systems.

I build production-ready cloud solutions focused on secure-by-default networking, least-privilege IAM, CI/CD automation, monitoring, operational resilience, and cost-aware architecture. All projects are fully documented with architecture diagrams, testing, and decision logs.

Technical Skills

☁️ Cloud Architecture (AWS)

VPC (multi-AZ design, subnet segmentation) • ECS Fargate • EC2 • S3 • CloudFront • Route 53 • Lambda • EventBridge • DynamoDB • SNS • IAM • CloudWatch • Secrets Manager • CodePipeline • CodeDeploy

🧱 Infrastructure as Code & Automation

AWS CDK (TypeScript) • CloudFormation • Infrastructure testing (Jest for CDK) • GitHub Actions • Git

🚀 Delivery & Operations

CI/CD pipelines • Blue/Green deployments • Monitoring & logging • Incident troubleshooting • Automation • Documentation-first engineering

🔐 Security & Reliability Practices

Least-privilege IAM • Secure network segmentation • High-availability patterns • Failure scenario design • Cost optimisation principles

Certifications

AWS Certifications

  • AWS Certified Security – Specialty
  • AWS Certified Solutions Architect – Associate
  • AWS Certified Developer – Associate
  • AWS Certified SysOps Administrator – Associate

Foundational Certifications

  • CompTIA Security+
  • CompTIA Network+

Projects

Full technical documentation, architecture diagrams, ADRs, and implementation details available here: Projects

Secure VPC Network Architecture (AWS CDK – TypeScript)

Production-style multi-AZ VPC with public/private subnet segmentation, NAT Gateway, Bastion host access, and least-privilege IAM design. Demonstrates secure network architecture and foundational cloud security principles.

CI/CD Blue/Green Deployment on ECS Fargate

End-to-end automated deployment pipeline using CodePipeline and CodeDeploy for zero-downtime releases. Includes infrastructure testing, deployment group configuration, and production-style documentation.

Smart Weather Notification & Automation System

Event-driven serverless system using EventBridge Scheduler, Lambda, DynamoDB, and SNS. Demonstrates modular architecture, automation patterns, and scalable notification workflows.

Education

University of Sydney — Cybersecurity Bootcamp (240 hours)

Training in security fundamentals, network defence, incident response, and secure system design — providing strong foundations for secure cloud operations.

Continuing Professional Development

Ongoing learning in cloud architecture, automation, serverless systems, cost optimisation, and production engineering practices.

Engineering Approach

  • Infrastructure testing and validation
  • Architecture Decision Logs (ADRs)
  • Clean Git commit history and structured project documentation
  • Security-first and cost-aware design
  • Emphasis on maintainability and operational clarity

Contact

Email: nicolas@nicolasgloss.com
GitHub: https://github.com/nicolasgloss-dev
LinkedIn: https://www.linkedin.com/in/nicolas-gloss/