Projects Portfolio

Built a full-stack portfolio website in Rust as a learning project, deliberately choosing the hard road over Next.js. Features include a theme system with 3 visual themes and 2 color modes (6 combinations), a build-time bilingual blog engine with syntax highlighting, SSR with WASM hydration for fast loads and SEO, and a contact form with honeypot traps and IP hashing. Security hardening includes CSP with nonces, HSTS, container lockdown (non-root, read-only filesystem, dropped capabilities), and Kubernetes network policies. Scored Grade A on external penetration testing. Deployed on K3s with Traefik ingress and Let's Encrypt certificates.

Led the implementation of a comprehensive IT inventory system, addressing critical gaps in infrastructure documentation and asset management. Developed automated PowerShell scripts for data collection across distributed endpoints without Active Directory, achieving 98% coverage of all IT assets. Established a centralized knowledge base using Excel and Jira Service Management, reducing information retrieval time from 48 hours to 30 minutes. This strategic initiative enabled data-driven decision-making for infrastructure investments and provided the commercial team with instant access to technical specifications. The project laid the foundation for subsequent security and cloud migration initiatives by providing complete visibility into the organization's IT landscape.

Designed and deployed a comprehensive Microsoft Intune proof of concept environment, establishing an isolated testing framework for endpoint management capabilities. Configured multiple test devices across Windows 10/11 versions, Android, and iOS platforms to simulate real-world infrastructure diversity. Implemented compliance policies and Role-Based Access Control (RBAC) with Azure AD integration, ensuring secure identity management. Developed comprehensive documentation and standardized procedures, delivering a turnkey solution that enabled the organization to safely evaluate pre-production features. This strategic initiative provided critical insights for future enterprise-wide endpoint management deployment, minimizing implementation risks while maximizing feature adoption potential.