Search on DuckDuckGo → Visit Website →
SYSTEM.ONLINE :: UPTIME 100%

Technology Leadership,
Platforms & Architecture

View Products About Me
~ platform-lead — bash — 80×24
$ whoami
Platform Engineering Leader
$ cat /etc/profile
Cloud: AWS, Azure, OCI, GCP
Security: XDR, EDR, IDS, IPS, ZTNA
Containers: Kubernetes, Docker Swarm
CI/CD: Jenkins, Semaphore, GitOps
Databases: MySQL, Postgres, Oracle RAC
Automation: Ansible, Terraform, AI-Code
Virtualisation: VMware, Hyper-V, Proxmox
Networking: Cisco, Juniper, Mikrotik, Ubiquiti
Transformations: Network, E-Commerce, Secure By Design, EUC
$ curl -s https://portfolio/metrics | jq '.impact'
{ "savings": "£6M+", "secured": "£1.5Bn/yr", "uptime": "99.99%" }
$ _
// about

$ whoami

An experienced technology leader blending deep technical credibility with senior leadership experience in platforms, architecture & software engineering and infrastructure management in Enterprise Retail, Media, and Managed E-Commerce environments.

Designed and built large scale infrastructures across AWS, Azure, OCI and On-premise. Spearheaded the deployment of Europe's largest single site Oracle X-Store POS system, defining operational benchmarks in security, scale and stability. Drove £6M+ savings through cloud optimisation and led AI initiatives to enhance efficiency and compliance.

Extensive experience managing onshore and offshore vendors with detailed KPIs and standards management. Securing over £1.5Bn/yr through rigorous engineering governance, compliance, and KPIs.

Platform Engineering
🛡 Cyber Security
Cloud Architecture
Infrastructure
📊 AI & Optimisation
🌐 Zero Trust / SASE
📦 Containers & Orchestration
🔐 Governance & Compliance
// technologies

$ echo $STACK

# Cloud AWSAzureOCIGCP # Compute Windows ServerRHELDebian # Virtualisation VMwareHyper-VProxmox # Containers KubernetesDocker Swarm # CI/CD & GitOps JenkinsSemaphoreGitOpsBitbucketGithubGiteaArgoCDTeamCity # Security XDREDRIDSIPSDDoSCrowdstrikePalo AltoAlert LogicQualys # Network & LB F5BrocadeHAproxyMikrotikUbiquiti # Networking CiscoJuniperHPE ArubaSilverpeak # Remote Access / SASE ZscalerZTNAWireguardTailscaleVDIZero Trust # AI & ML LiteLLMOllamaBedrockOpenAIAI-Code # Languages PHPNodeJSJavaScriptGolangPython # Databases MySQLMsSQLSybasePostgresOracle RAC # Automation AnsibleTerraform # Identity & Endpoint Entra IDJumpcloudIntune # Tools ITSMITILJiraConfluenceCommvaultSynologyPXESCCMiSCSIFibre Channel
// engineering & architecture

$ make build

🏗

Enterprise Software Architecture

Designing and delivering scalable, resilient software systems across retail, media, and e-commerce. Deep expertise in microservices, event-driven architectures, monorepo strategies, and domain-driven design — from whiteboard to production at enterprise scale.

MicroservicesEvent-DrivenDDDAPI DesignMonorepo
🤖

Building Applications with AI

Leading AI-augmented engineering practices including LLM-powered compliance engines, intelligent CI/CD pipelines, and AI-driven FinOps. Experienced with LiteLLM, Ollama, Bedrock, and OpenAI for building production-grade AI capabilities into platforms.

LiteLLMOllamaBedrockOpenAIRAGAI-Code
🔩

Platform Engineering & GitOps

Building internal developer platforms with GitOps-driven workflows, self-service infrastructure, and automated governance. Unifying CI/CD, observability, security, and compliance into cohesive platform experiences that accelerate delivery velocity.

GitOpsK8sTerraformAnsibleCI/CDIDP
// products

$ ls -la ./products/

FINOps DASHBOARD £1.2M budget BUDGET VS SPEND £986K / £1.2M 82% Shadow IT detected £47K SUPPLIER COST TRENDS AWS ↑ 12% (£23K over) Azure ↑ 8% (£11K over) Datadog → 0% (on budget) AI RECOMMENDATIONS Rightsize r6i.8xl → r6i.4xl — save £14.8K/yr RI purchase recommendation — 3yr EC2 term — save £38K Shadow IT alert — unrecognised SaaS spend — £47K
In Development

Nexus: FinOps Platform

Managing technology budgets is increasingly complex, suppliers change prices in unexpected ways, budgets are stretched and shadow IT is a complex problem to manage. I'm building a platform to support decision makers.

AIAPIsMySQLWebFinOpsAWSKubernetes
SUPPLIER RISK OVERVIEW 42 suppliers RISK DISTRIBUTION HIGH (4) MEDIUM (11) LOW (27) DATA ASSETS 156 data assets tracked 28 GDPR impact assessments 12 active DPAs RECENT INCIDENTS Supplier data breach — third-party payroll provider 2h ago DPO review requested — new marketing data processor 1d ago Compliance review closed — cloud infrastructure provider 3d ago
Live

Unity DataFlow: Data Protection Manager

Manage your suppliers, systems and data from an infosec and data protection leader's point of view, report risk and manage incidents.

PythonPostgresK8sAWSLiteLLM
TFL TUBE STATUS 11 lines LINE STATUS Bakerloo — Good Service Central — Good Service Jubilee — Minor Delays INTERCONNECT MAP X C J P N King's Cross St Pancras · 6 lines interconnect TRAIN TRACKING — LIVE Northern Line — 7 mins — Camden Town → Euston Victoria Line — 3 mins — Oxford Circus → Warren Street AI-powered predictions · Data from TFL Unified API
Playground

London Under Ground Status

This is a proof of concept AI generated application to get data from TFL and display it in interesting ways. With maps and interconnect data, train tracking etc.

AITFLUnderGroundDevelopmentAPIs
BGP ROUTE MONITOR 847 routes LIVE PROPAGATIONS AS15169 — 10.0.0.0/24 → bgp.lan AS13335 — 192.168.0.0/16 → edge-01 AS16509 — 172.16.0.0/12 → core-rtr WITHDRAWALS AS32934 — 10.0.0.0/8 → WITHDRAWN AS8075 — 172.16.0.0/20 → FLAPPING ASN LOOKUP — RIPE NCC AS15169 — Google LLC US · 1989 prefixes AS13335 — Cloudflare Inc US · 2156 prefixes AS16509 — Amazon.com Inc US · 3124 prefixes Auto-refresh: 30s | Last updated: 12s ago
Live

Orbit NetMonitor

Review live raw BGP route propagation and withdrawals, search ASN data and see history, auto refreshes from RIPE NCC.

BGPRIPENETWORKWANAWSAI
OSINT THREAT FEED 34 alerts CROSS-VALIDATED SOURCES Hacker News · 3 matched sources Twitter/X · 2 matched sources Reddit · 1 matched source MITRE ATT&CK MAPPING T1059 — Command & Scripting T1566 — Phishing T1078 — Valid Accounts RECENT OSINT ALERTS CVE-2026-3456 — zero-day exploit circulating on dark web forums Nation-state APT group targeting critical infrastructure — verified 3 sources Info-stealer campaign — cross-validated, confidence 94%
In Preview

Unity OSINT Dashboard

Open source intelligence is a key growing area where multiple public sources are linked and validated to ensure accuracy and truthfulness.

OSINTDataFeedsCISOMITREHacker News
YOUR LOGO HERE ——— placeholder ———
Our Future?

Your Company or Product here?

I can help you build, scale and secure your business or product.

// experience

$ cat ~/career.log

Contractor

Multiple Industries
2026 — Present

Building SaaS and PaaS products using AWS, Kubernetes, MySQL, Postgres, AI and other technologies. See some of the products I'm building above.

Head of Technology — Platform Engineering

Luxury Retail & E-Commerce
2021 — 2026

Built and led a 35+ technology organisation across cloud, hosting, network, retail & e-commerce operations, infosec, and architecture. Europe's largest Oracle X-Store POS deployment (~1,400 terminals). Crowdstrike, Palo Alto, Zscaler ZTNA, PCI-DSS compliance securing £1.5bn+ revenue. £6M+ cloud optimisation savings. Led AI initiatives for operational efficiency. Technical Design Authority — AWS, Azure, OCI, IaC (Terraform/Ansible), VMware, Proxmox, Cisco SDWAN, 500K+ data metric monitoring estate.

Head Of IT

Scale-Up / E-Commerce
2019 — 2021

Consolidated tooling, developed security and compliance roadmap during start-up to scale-up transition. Reduced IT spend by 30% through optimisation and consolidation. Oversaw cloud, DevSecOps, and internal IT. Managed 15TB+ AWS database estate and Kubernetes-backed developer platform with CI/CD pipelines.

DevOps Engineering Manager

Retail / Fashion E-Commerce
2017 — 2019

Led cloud engineering and security for some of the UK's largest B2C e-commerce properties. Achieved 99.99% availability by embedding SRE/DevOps practices. Neutralised a cyber-attack targeting 35M+ accounts, collaborating with national authorities. Architected Kubernetes migrations, edge security stacks (CDN, WAF), and managed 7 brand platforms unified under a single infrastructure estate.

Head of Architecture

Media & Publishing
2014 — 2017

Enterprise architecture strategy, Technical Design Authority, and DevOps transformation across infrastructure, engineering, operations, and security. Led 15-person architecture team plus 60-person offshore engineering organisation. Delivered CI/CD frameworks, microservices, serverless APIs, and modern observability. Achieved ISO 27001 and PCI DSS Tier 1 accreditation. Led £1M+ infrastructure divestiture and recovery of £10M+ digital portfolio.

Technical Services Manager

Managed Hosting
2010 — 2014

Managed engineering team across multi-tenant hosting and managed e-commerce business. Cisco and Juniper network with public ASN, 3 interconnected data centres, HP server and SAN infrastructure. Responsible for on-call escalations, capacity planning, and maintenance across BGP, OSPF, VPN, VMware, and Windows/Linux platforms.

Software Engineer / Developer

Software & Managed Services
2005 — 2010

Web development with PHP and SQL, 3rd line engineering support. Migrated services to colocation, added managed anti-spam, hosting, and e-commerce products to the company portfolio. Developed an e-commerce solution integrated with backoffice accounting and POS systems.

// value

$ ./offer.sh --help

What I Bring to Your Business

A highly experienced platform engineering leader who operates at the intersection of technical depth and executive strategy. I don't just design systems — I build organisations, transform cultures, and deliver measurable business outcomes.

  • Strategic technology leadership — aligning platform investment with commercial outcomes
  • Deep technical credibility across cloud, security, networks, and software engineering
  • Proven track record driving £6M+ in cloud cost savings and optimising operational spend
  • Building and leading high-performance engineering teams, onshore and offshore
  • Vendor and MSP governance with rigorous KPI frameworks and standards management
  • AI-led innovation — embedding intelligence into compliance, FinOps, and delivery pipelines
  • Enterprise architecture governance securing £1.5Bn+ transaction volume annually

🛡 Crisis Management & Incident Leadership

When things go wrong, experience matters. I have led critical incident response, disaster recovery, and crisis management across large-scale retail, e-commerce, and media platforms — restoring stability, securing stakeholder confidence, and implementing preventative architectures.

  • Major incident command and post-mortem-driven improvement cycles
  • Disaster recovery planning, testing, and real-world failover execution
  • Security incident response — breach containment, forensics, and remediation
  • Regulatory crisis management — compliance breaches and audit remediation
  • Vendor and supply chain crisis escalation management
  • Building resilient architectures that survive at scale

🔄 Technology Transformation — Major Deliveries

I have led large-scale technology transformations across enterprise retail, e-commerce, media, and managed services environments — each delivering measurable operational and commercial impact.

  • Europe's largest Oracle X-Store POS deployment — Designed and delivered ~1,400 terminals across a flagship retail estate, setting new operational benchmarks for security, scale, and stability in physical retail.
  • Multi-cloud cost optimisation (£6M+ savings) — Led FinOps transformation across AWS, Azure, and OCI estates, recovering millions in wasted spend through rightsizing, reserved instance restructuring, and vendor consolidation.
  • Data centre build and consolidation — Designed and built two new external data centres while managing six internal facilities (50+ racks, 300+ switches). Migrated legacy colocation to modern software-defined infrastructure.
  • Zero Trust / SASE architecture — Transitioned a global retail enterprise from legacy VPN to Zscaler ZTNA, Wireguard, and Tailscale-based identity-first network access, securing 10,000+ concurrent users and thousands of devices.
  • AI-led operational efficiency programme — Spearheaded enterprise AI adoption including LLM-powered compliance monitoring, AI-driven CCTV systems, and automated policy enforcement — embedding intelligence into compliance, FinOps, and operations.
  • Cloud-native platform migration — Architected Kubernetes migrations for major e-commerce platforms, transitioning from legacy VM-based hosting to containerised microservices with GitOps-driven CI/CD and service mesh observability.
  • Cybersecurity transformation — Deployed Crowdstrike EDR, Palo Alto firewalls, and comprehensive SIEM/SOAR capabilities. Led incident response for a 35M+ account cyber-attack, collaborating with national authorities to neutralise threats and secure prosecutions.
  • PCI DSS & ISO 27001 compliance programmes — Achieved Tier 1 PCI DSS certification securing £1.5Bn+ annual transaction volume, and led the architectural governance and controls framework for ISO 27001 accreditation.
  • Vendor and MSP operating model overhaul — Rebuilt vendor governance from the ground up with detailed KPI frameworks, QBR/MBR cadences, and standards management for onshore and offshore teams of 50+ engineers.
  • SDWAN and network modernisation — Led the transformation from legacy MPLS to Cisco SDWAN across a distributed retail estate, deploying 50Gbps+ edge bandwidth and supporting 10,000 concurrent WiFi users across dozens of concession businesses.
// contact

$ mail -s "hello" portfolio

Let's talk about how I can help your organisation — whether it's platform transformation, security strategy, engineering leadership, or crisis recovery.

I am available for remote outside IR35 contract roles, one time engagements, and senior permanent roles.

// status
Message Sent
Thank you for reaching out. I will review your message and respond promptly.
// access denied
Need help building your product?
Let's talk about how I can help you build, scale and secure your business or product.
Contact Me →