Senior DevSecOps Engineer | Platform Security | Cloud Native

I design and build secure, scalable cloud platforms that enable developers to move fast—without compromising security.

My focus is on embedding security directly into the software delivery lifecycle through DevSecOps, platform engineering, and policy-as-code. I specialize in Internal Developer Platforms (IDPs), secure CI/CD pipelines, and Kubernetes-based infrastructure that enforce security by default.

• 🔐 Design and implement DevSecOps pipelines (shift-left security)
• ☁️ Build and secure cloud-native platforms (AWS / Azure)
• ⚙️ Automate infrastructure using Terraform & IaC frameworks
• 🛡️ Enforce security using Kyverno / OPA / policy-as-code
• 🚀 Create Internal Developer Platforms (IDP) with Golden Paths
• 📉 Reduce MTTR, toil, and risk through automation & observability

Cloud & Infrastructure

• AWS, Azure
• Kubernetes (EKS, AKS)
• Terraform, Helm

DevSecOps

• CI/CD: GitHub Actions, Jenkins
• SAST / DAST / SCA integration
• Secrets management & supply chain security

Security

• Threat Modeling (STRIDE)
• IAM, OAuth2, SAML
• Container & Kubernetes security

Platform Engineering

• Internal Developer Platforms (IDP)
• Golden Path workflows
• Developer experience (DevEx) optimization

A production-style platform enabling developers to deploy securely by default.

• Self-service repo + infrastructure provisioning
• Built-in CI/CD with security gates
• Policy enforcement using Kyverno
• Golden Path templates for microservices

Fully automated pipeline integrating security at every stage.

• SAST, DAST, SCA integrated into CI/CD
• Automated vulnerability triage + ticketing
• SBOM generation & artifact signing

Hardened Kubernetes cluster with enforced security controls.

• Network policies, RBAC, Pod Security Standards
• Admission control via Kyverno
• Runtime threat detection

Applied STRIDE threat modeling on cloud-native architecture.

• Identified attack vectors & mitigations
• Designed secure auth (OAuth2/SAML)
• Integrated controls into CI/CD

Reusable policy library for enforcing security across environments.

• Terraform + Kubernetes policies
• Compliance-as-code approach
• Integrated into deployment pipelines

I don’t just build systems—I measure outcomes:

• Reduced manual security triage through automation
• Improved deployment velocity with secure defaults
• Minimized risk via policy enforcement at scale

• 🧩 Internal Developer Platform (IDP) with self-service workflows
• 🔐 Advanced Kubernetes security controls with policy-as-code
• ⚡ Golden Path developer workflows inspired by real platform teams

• 💼 www.linkedin.com/in/omakwuoyaje
• 📫 Open to Senior DevSecOps / Platform Engineering opportunities

The secure way should be the easiest way.

Security should not slow developers down—it should be built into the platform so they don’t have to think about it.