Staff DevOps & Security Engineer, AWS Community Builder (Security), Wazuh Ambassador
18+ years in cloud infrastructure, security engineering, and SRE across AWS, Azure, GCP, Yandex Cloud, and OCI. Based in Dubai, UAE. Writing at blog.pytoshka.me.
- Security Engineering - detection engineering, SIEM (Wazuh since 2015), threat modelling, compliance (SAMA CSF, CBUAE, PCI DSS, SOC 2 Type II)
- Cloud & Infrastructure - multi-cloud architecture, IaC at scale (Terraform/Terragrunt), Kubernetes, ECS, serverless
- Platform Engineering - observability stacks, incident response, HA design, SRE practices
- Security Tooling - CLI frameworks, static analysis tools, cloud marketplace products, AI/ML for log analysis
| Domain | Tools |
|---|---|
| Cloud | AWS, Azure, GCP, Yandex Cloud, OCI |
| IaC | Terraform, Terragrunt, Ansible, Pulumi |
| Containers | Docker, Kubernetes, ECS, OpenShift |
| Security | Wazuh, OpenSearch, Vault, Cloudflare |
| Languages | Python, Go, Bash |
| Observability | Prometheus, Grafana, ELK Stack, OpenTelemetry |
| CI/CD | GitHub Actions, GitLab CI, ArgoCD |
| Databases | PostgreSQL, MySQL, MongoDB, Redis |
- docker-wazuh-agent - containerised Wazuh agent
- wazuh-prometheus-exporter - Wazuh metrics for Prometheus
- wazuh-linter - static analysis and CI/CD integration for Wazuh rules and decoders
- AI/ML models for Wazuh log analysis: huggingface.co/pyToshka
Technical blog: blog.pytoshka.me
Side project: satirical sci-fi trilogy about LLMs - The Day the LLM Stood Still, The Catcher in the Prompt, Only 1984 Tokens Remain
