Summary
Linux-first systems engineer with deep hands-on expertise across secure networking, containerized infrastructure, and distributed DNS. Adept with Fedora Kinoite, Ubuntu Server, and cloud-native environments (OCI, AWS, Proxmox). Proven success supporting remote operations, privacy-enhancing deployments, and scalable architecture with a focus on resilience and automation.
Core Competencies
- OS & Server Management: Fedora Kinoite, Ubuntu 22.04/24.04, DietPi, Ansible, SELinux, rpm-ostree
- Virtualization & Containers: Proxmox VE, Docker, Podman, systemd-nspawn, KVM
- Networking & Security: OPNsense, WireGuard, Tailscale, Zerotier, Unbound, CoreDNS, NFS
- Infrastructure Engineering: Homelab architecture, LACP switching, low-bloat VPN mesh design, high-availability DNS
- Automation & DevOps: Bash, Python, systemd services, custom KWin scripts, cron-based maintenance tasks
Professional Experience
| Systems Engineer |
|---|
| Imperial Artillery – Mesa, AZ | Dec 2021 – Present |
- Managed secure Linux infrastructure for DoD supplier with focus on virtualization, backups, and remote access tooling.
- Implemented WireGuard + Tailscale hybrid mesh for site-to-site tunneling and secure remote management.
- Built container-based services using Docker and rpm-ostree overlays to deliver reproducible, immutable systems.
|
| Data Center Technician |
|---|
| GoDaddy – Phoenix, AZ | Mar 2021 – Dec 2021 |
- Provisioned Linux and Windows servers across multiple racks, integrated out-of-band IPMI access.
- Supported bare-metal to hypervisor transitions and live incident mitigation during high-traffic events.
|
| NOC Services Technician |
|---|
| Phoenix NAP – Phoenix, AZ | Jan 2020 – May 2021 |
- Provided 24/7 remote support for Linux servers in colocation and VPS environments.
- Resolved outages through on-call triage and scripted diagnostics, including packet captures and disk health checks.
|
Certifications & Training
- AWS Certified Solutions Architect – 2021
- FBI InfraGard Member – Cyber Resilience Community
- Google IT Support Professional Certificate – 2020
- CompTIA Network+ – 2018
- CCNA (In Progress)
Toolbelt
- OS & Kernels: Fedora Kinoite, Ubuntu Server, DietPi, custom kernel tuning
- DNS & Routing: CoreDNS, Unbound, DNSCrypt, DoH, DoT
- Firewall & Edge: OPNsense, nftables, pf, IP sets, intrusion detection tuning
- Remote Access & KVM: Pi Zero USB gadget mode (serial, HID, Ethernet), IPMI/BMC access, virtual USB HID over network
Project Highlights
- Mesh DNS Infrastructure: Designed & deployed multi-region CoreDNS + Unbound DNS mesh over Tailscale with Oracle Cloud & home lab integration.
- Secure KVM-on-a-Stick: Built Pi Zero gadget for remote headless server recovery using USB Ethernet & serial gadgets.
- Immutable Host Builds: Maintained personal Fedora Kinoite deployments with layered Flatpaks, rpm-ostree tweaks, and KVM VMs for test networks.