Cloud • IAM • Security

Building secure cloud apps & identity systems.

I’m Ty — I design, deploy, and secure modern web backends and identity access flows. This is my public portfolio of labs, builds, and notes.

AWS • API GW • Lambda Entra ID (Azure AD) WAF • TLS • DNS
LinkedIn GitHub YouTube

Projects

Hands-on builds that prove skills in cloud, IAM, and web security.

AWS Serverless Back End (API GW + Lambda + RDS)

Built a secure serverless API with JWT auth (Cognito), WAF, and KMS-encrypted storage. Least-privilege IAM, CloudWatch alarms, and Route 53 DNS.

API GatewayLambdaWAF
View Repo Live Demo

Entra ID (Azure AD) — IAM Policies & Conditional Access

Configured secure sign-in, MFA, and role-based access with Conditional Access policies. Documented attack paths and mitigations.

Entra IDMFARBAC
Write-up

Portfolio Frontend + CDN

Responsive, accessible portfolio deployed on CDN with HTTPS, HSTS, and cache-busting. Netlify → (migratable to CloudFront + S3).

HTMLCSSNetlify
Repo

Resume

Experience, highlights, and impact. Full PDF available.

2025 — Now

Cloud / IAM Builder (Independent)

AWS serverless back ends, identity integrations, DNS/TLS, and security hardening.
  • Designed API Gateway + Lambda + RDS stack with JWT auth (Cognito) and WAF.
  • Implemented least-privilege IAM, KMS encryption, CloudWatch alarms, and CI/CD deploys.
  • Wrote runbooks: secret rotation, DB restore, DLQ replay.
Download Resume (PDF)
Earlier

Security-minded IT & Web Work

Hands-on with DNS, SSL/TLS, static hosting, and basic incident hygiene.
  • Deployed HTTPS sites with proper redirects, DNS, and caching.
  • Applied principle of least privilege across services and tooling.

Videos & Media

YouTube explainers, demos, and walkthroughs.

See all on YouTube

Contact

Want to collab or chat? Reach out.