Selected Work

Projects

Featured work comes first. Private client work is presented as public-safe case studies with live links and clear outcomes.

Project case studies organized for hiring review.

A curated set of security, DevSecOps, client platform, and GitHub projects organized around the roles I am targeting: Security Analyst, IAM, Cloud Security, SOC/NOC, Network Security, and DevSecOps.

Security roles

Cloud, IAM, SOC, and network defense

Azure architecture, Entra ID, Conditional Access, Sentinel detections, segmentation, firewall policy, and security operations.

DevSecOps roles

Automation, CI/CD, and production ownership

GitHub Actions, static deployment, monitoring workflows, PowerShell automation, server operations, and controlled change practices.

Client delivery

Live platforms with real customers

Neotha, Nkurunziza, and Sylva Renovations show frontend/backend delivery, hosting, DNS, SSL/TLS, troubleshooting, and support.

Featured

01

Best evidence for target roles.

Projects selected to show security architecture, network defense, production ownership, automation, and operational follow-through.

01

Cloud Security / IAM / Sentinel

2026

Project role · Designer and Implementer

View on GitHub

Azure Hybrid Network and IAM Security Architecture

Enterprise-style hybrid security architecture for an education environment. The project combines segmented Azure VNets, simulated on-prem connectivity, Entra ID governance, Conditional Access, RBAC, MFA, and Microsoft Sentinel detections.

What this demonstrates

  • Designed two VNets, eight subnets, VPN Gateway connectivity, and 15+ NSG rules to separate Staff, Students, Servers, and gateway traffic.
  • Implemented 30 governed identities across Staff, Student, and IT Admin groups with MFA, blocked legacy authentication, compliant-device requirements, and least-privilege RBAC.
  • Documented Sentinel and Log Analytics detections for failed logins, risky sign-ins, and authentication review using KQL-backed alert logic.
  • Microsoft Azure
  • Microsoft Entra ID
  • Conditional Access
  • MFA
  • NSG
  • VPN Gateway
  • Microsoft Sentinel
  • KQL
  • Azure CLI

02

Network Security / Segmentation

2024

Project role · Lab Architect

Enterprise Network Segmentation and Security Lab

Network-defense case study focused on segmentation, firewall policy design, and validation. It models how staff, student, guest, IoT, VoIP, and server traffic should be isolated and tested in an enterprise environment.

What this demonstrates

  • Mapped topology, trust boundaries, and approved flows so firewall rules are tied to business purpose instead of open-ended access.
  • Modeled guest and IoT isolation to reduce lateral-movement risk across unmanaged devices and user groups.
  • Created a repeatable validation approach for firewall policy design, packet-flow testing, rollback, and Wireshark evidence.
  • Cisco
  • Fortinet
  • VLAN
  • Site-to-Site VPN
  • Wireshark
  • Firewall Policy Design

03

DevSecOps / Full-Stack / Operations

Ongoing

Project role · Owner, Founder, and Lead Engineer

Private or client repository

Visit neotha.com

Neotha - Owner-Led Platform, Client Support, and Server Operations

Owner-led technology platform and client-service work where I build frontend and backend systems, support customers, manage hosting/server environments, and apply secure deployment habits to live business platforms.

What this demonstrates

  • Deliver production websites and client systems with React/Next.js, TypeScript, backend integration, SEO metadata, responsive UI, and accessibility-aware interfaces.
  • Manage DNS, SSL/TLS, hosting configuration, deployment troubleshooting, uptime support, and customer requests for live services.
  • Apply security-minded operations: environment separation, dependency hygiene, least-privilege access, backups, documentation, and careful change management.
  • Next.js
  • TypeScript
  • React
  • Tailwind CSS
  • Backend Integration
  • DNS
  • SSL/TLS
  • Server Management
  • Hosting
  • DevSecOps

04

Security Operations / Automation

2023

Project role · Operations Engineer

Private or client repository

Network Monitoring and Security Automation Initiative

Monitoring and automation initiative shaped around real support work: availability signals, security follow-up, stale-account review, event-log collection, and repeatable documentation for faster troubleshooting.

What this demonstrates

  • Used SolarWinds/PRTG-style monitoring patterns to centralize availability and operational security signals.
  • Built PowerShell workflows for provisioning review, stale-account checks, event-log collection, and access-audit follow-up.
  • Improved repeatability with documented checks that reduce manual workload and make security follow-through easier to hand off.
  • SolarWinds
  • PRTG
  • PowerShell
  • Event Logs
  • Access Review
  • Security Auditing
  • User Lifecycle Automation

Supporting

02

Client delivery and engineering fundamentals.

Additional work that shows customer support, production delivery, backend/frontend ownership, GitHub discipline, and programming fundamentals.

05

Client Platform / Full-Stack Delivery

Ongoing

Project role · Full-Stack Developer and Server Manager

Private or client repository

Visit nkurunziza.ca

Nkurunziza - Client Web Platform and Hosting Support

Client-facing web platform delivered with frontend/backend ownership, hosting, and operational support. This project demonstrates client communication, production reliability, deployment discipline, and secure server-management habits.

What this demonstrates

  • Built and maintained a live web experience with clean navigation, responsive UI, and public-facing business reliability.
  • Handled deployment, DNS/SSL alignment, hosting configuration, server updates, and customer support for ongoing operations.
  • Applied practical security controls around access, backups, change discipline, and production troubleshooting.
  • Frontend Development
  • Backend Support
  • Responsive UI
  • Hosting
  • DNS
  • SSL/TLS
  • Server Management
  • Client Support

06

Client Website / Hosting Operations

Ongoing

Project role · Full-Stack Developer and Server Manager

Private or client repository

Visit sylvarenovations.ca

Sylva Renovations - Client Website and Hosting Operations

Client website built and maintained for Sylva Renovations, with professional frontend delivery, backend/hosting support, SSL/TLS configuration, DNS alignment, and ongoing production troubleshooting.

What this demonstrates

  • Delivered a clean public-facing website that presents the client professionally and works across desktop and mobile screens.
  • Handled hosting setup, DNS, SSL/TLS, deployment updates, and operational support for the live business site.
  • Applied the same security-minded habits I use in IT work: controlled access, careful changes, backups, documentation, and reliable client communication.
  • Frontend Development
  • Responsive UI
  • Backend Support
  • Hosting
  • DNS
  • SSL/TLS
  • Server Management
  • Client Support

07

Product Engineering / Data Workflow

2026

Project role · Full-Stack Developer

Private or client repository

Expense Tracker - Roommate Receipt and Cost-Sharing App

Private full-stack application for shared household expenses. The app is designed around receipt upload, monthly review, total tracking, and cleaner cost-splitting between roommates.

What this demonstrates

  • Organized a real workflow around uploads, totals, monthly review, and shared accountability instead of manual tracking.
  • Shows practical product thinking: user input, data capture, privacy-sensitive records, and clear monthly summaries.
  • Adds backend/data-handling experience that supports secure web and DevSecOps positioning.
  • TypeScript
  • Frontend Development
  • Backend Integration
  • File Upload
  • Data Modeling
  • Privacy-Aware Handling
  • GitHub

08

DevSecOps / CI/CD / Portfolio

2026

Project role · Developer and Maintainer

View live portfolioView repository

Portfolio - Next.js Static Export and GitHub Pages Pipeline

This portfolio is maintained as a professional public GitHub project using Next.js, TypeScript, static export, GitHub Actions, and GitHub Pages deployment under the /portfolio path.

What this demonstrates

  • Configured one clean public repository for hiring review with a GitHub Pages deployment workflow and static export output.
  • Built recruiter-focused case-study pages with direct links, resume download, responsive navigation, dark mode, and no fake contact backend.
  • Verified linting, production builds, route base paths, metadata, and generated static assets for Pages hosting.
  • Next.js
  • TypeScript
  • React
  • Tailwind CSS
  • GitHub Actions
  • GitHub Pages
  • Static Export
  • SEO Metadata

09

Programming Fundamentals / GitHub Practice

2023

Project role · Developer

Budget AppProbability CalculatorPolygon Area Calculator

Python Engineering Foundations

Public Python projects that show core programming fundamentals: formatting, date/time logic, probability simulation, object-oriented geometry, and budget/category tracking.

What this demonstrates

  • Built small, readable Python utilities with testable logic and clear problem boundaries.
  • Practiced object-oriented design, data formatting, arithmetic rules, probability simulation, and command-line style problem solving.
  • Maintains a public GitHub trail of programming foundations that supports broader engineering credibility.
  • Python
  • Object-Oriented Programming
  • Data Structures
  • Simulation
  • Testing
  • Git
  • GitHub

Looking for experience in IAM, cloud, network security, DevSecOps, or client platform operations?

Start a ConversationView Services