Least squares adjustment software

Azure DevOps Server development system segmentation best practices

Comprehensive methodology, checklists, and hardening guides for ICS/OT Cybersecurity Audits based on IEC 62443 & NIST SP 800-82. Focus on defensive security practices and risk mitigation in industrial environments.

Produces a set of network policies, given a json describing the connectivity in a given cluster

Educational PoC demonstrating network isolation for Node.js apps using Docker internal networks and nginx as an egress proxy gateway.

Secure AWS VPC architecture featuring public/private subnet segmentation, IAM least-privilege access, hardened EC2 deployment, and monitoring with CloudWatch and VPC Flow Logs

A simulated enterprise network demonstrating VLAN segmentation, inter-VLAN routing, and DHCP services using Cisco Packet Tracer.

Network infrastructure architecture for campus employed the distance-vector RIP, etc., designed on Cisco Packet Tracer, showcasing my strong knowledge in networking.

Least squares adjustment software

A security-focused network lab with pfSense and multi-OS service configuration for educational and testing purposes.

Enterprise-style secure research lab network in Cisco Packet Tracer with VLANs, ACLs, SSH-only access, WPA2 Wi-Fi, and DMZ firewall simulation.

🌐 Isolate a Node.js service's network access using Docker and nginx as an egress proxy for enhanced security and control in your applications.

Sanitized, public-safe snapshot of a homelab IaC + SOC lab. Secrets and internal IPs/hostnames are redacted and replaced with RFC5737 examples. Adds high-signal docs, comments, and runbooks to explain design choices. Companion to iac-homelab.

A hands-on project to design and implement a secure enterprise network with segmentation, firewall, VPN, and centralized logging.

Designed and configured a multi-department network using ACLs to manage inter-departmental access, reduce unauthorized traffic, and enhance network security.

Policy-driven AWS network segmentation using Terraform, with guardrails, automation, and deny-by-default enforcement.

Сегментация облачной инфраструктуры на зоны безопасности с помощью решения Check Point Next-Generation Firewall.

🔐 Secure DMZ & Intranet with MikroTik + Cisco L3 — real-world network isolation

🛡️ Develop a vendor-neutral security operations framework for identity, segmentation, telemetry, and validation, tailored for scalability and automation.

[AWS | Terraform] Secure, cloud-native library platform deployed on AWS Elastic Beanstalk. Features a fully automated CI/CD pipeline (GitHub Actions), Infrastructure as Code, container security scanning (Trivy), and network segmentation.