Projects

Things I've built.

A selection of AWS infrastructure and tooling projects — from enterprise backup architecture to security automation and IaC templates.

Enterprise Backup & Archival Architecture
GitHub ↗

Reference architecture for multi-region backup and archival on AWS. Covers S3 lifecycle policies, cross-region replication for disaster recovery, and AWS Backup vault governance — deployable via Terraform with environment-specific variable files.

Terraform S3 AWS Backup Cross-Region Replication IaC
S3 Security Watchdog Agent
GitHub ↗

Lightweight S3 security scanner with agent-style evaluation. Checks for public access exposure, encryption, versioning, and block public access settings. Includes change detection across runs and optional AI-generated remediation summaries via LLM.

Python S3 Security AI Agent Automation
Custom VPC + EC2 Terraform Template
GitHub ↗

Reusable Terraform module for provisioning a custom VPC with EC2 — covering subnets, routing, security groups, and instance configuration. Built for repeatability across environments.

Terraform VPC EC2 Networking IaC
EC2 with IAM Role Template
GitHub ↗

Terraform template for deploying an EC2 instance with a least-privilege IAM role attached. Demonstrates secure instance profile patterns and role-based access control for compute workloads.

Terraform EC2 IAM Least Privilege IaC
3-Tier Portfolio Site on AWS
GitHub ↗

This site — a fully serverless 3-tier architecture on AWS. CloudFront + S3 for the frontend, API Gateway + Lambda (Python) for the backend, DynamoDB for persistence. Infrastructure provisioned entirely with Terraform, deployed via GitHub Actions CI/CD.

Terraform CloudFront Lambda API Gateway DynamoDB GitHub Actions