Backend & platform engineering
PHP, Laravel, Symfony, Node.js, Express, Restify, ActionHero, JavaScript and TypeScript APIs built for maintainability, performance and real production use.
Senior Software Engineer · Platform · Application Security
I design, build and stabilise secure production software: platform services, APIs, enterprise integrations, cloud-native backends and automation with security, reliability and maintainability built into the delivery flow.
Profile
I combine hands-on software engineering with technical leadership. My focus is on reliable delivery: understanding the business process, choosing the right architecture, writing maintainable code and making sure systems are observable, deployable and secure enough for real production use.
I am comfortable working across the full delivery chain - requirements, solution design, backend services, frontend interfaces, integrations, infrastructure, CI/CD and production support - with special attention to secure implementation, automated quality gates and operational risk reduction.
PHP, Laravel, Symfony, Node.js, Express, Restify, ActionHero, JavaScript and TypeScript APIs built for maintainability, performance and real production use.
Security-minded design and review around auth, authorization, input validation, dependency hygiene, secrets handling, automated checks, tests and safer release workflows.
Business-critical data flows, SaaS integrations, queues, CSV processing, ERP/commerce workflows and operational tooling with validation, traceability and rollback thinking.
AWS, Docker, Kubernetes, Helm, RDS, CloudFront, Lambda, EventBridge, CI/CD, logging and monitoring, with a practical approach to reliability, security and cost.
Application security focus
My security background is practical and delivery-oriented: secure code review, defensive API design, careful auth and authorization boundaries, input validation, dependency hygiene, secrets/configuration handling, cloud exposure minimisation and automated quality gates in CI/CD.
Threat-aware planning, review checklists, OWASP-informed implementation, code-review feedback, regression prevention and security standards that fit the team workflow.
Unit, integration and E2E tests, linting/static checks, dependency audits, container and pipeline checks, plus AI-assisted review support to catch issues earlier.
AWS, Kubernetes, Helm and GitLab CI experience with attention to IAM, secrets separation, deployment safety, network exposure, observability and rollbackable releases.
Secure API usage, idempotent processing, validation of CSV/import workflows, queue reliability, error handling and auditability for business-critical operations.
AI-assisted delivery
I use AI as part of the engineering workflow to shorten feedback loops, explore implementation options, catch code-review and security issues earlier and produce clearer project documentation. The goal is not to replace engineering judgment, but to amplify it: faster delivery, better coverage and fewer avoidable mistakes.
AI agents help draft, refactor and validate code quickly while I keep ownership of architecture, security and maintainability.
AI-assisted checks help surface missing validations, risky edge cases, regressions, readability issues and incomplete error handling before review.
Documentation, unit tests, integration tests and E2E tests can be produced faster and kept closer to the actual code.
ChatGPT, Claude, Codex, GitHub Copilot and Gemini - used pragmatically depending on the task, codebase and privacy requirements.
Selected work
Technical leadership and implementation for supply-chain solutions and integrations involving Shopify, Fluent Commerce, Business Central/Dynamics 365, RabbitMQ, Snowflake, Retool and Zapier.
Tools for high-volume order operations, CSV-based workflows, partial refunds, gift cards, SKU mapping, data validation and reporting, designed to reduce manual work, mistakes and operational risk.
Database and infrastructure work including MySQL/RDS upgrades, encoding fixes, deployment pipelines, queue-based processing, cache strategy, production troubleshooting and controlled release practices.
REST APIs and integrations with attention to auth, authorization, validation, error handling, idempotency, traceability and safe data processing across business-critical systems.
AWS, Docker, Kubernetes, Helm, GitLab CI and production support experience with practical concern for secrets, IAM, observability, network exposure and rollbackable deployments.
Experience with JWPlayer, Wowza, AWS CloudFront, AWS MediaConvert, FFMPEG and streaming CDN integrations for video delivery and processing workflows.
Technical stack
Let’s talk