Jhon Herrera

Cloud Security Engineer

I lead large-scale cloud migrations and implement robust DevSecOps principles. My focus is architecting secure, automated infrastructure to enhance system resilience and optimize efficiency.

Get In Touch View My Work

Technical Acumen

Languages & IaC

  • Python
  • Terraform & Packer
  • Shell Scripting
  • SQL (MySQL)

Tools & Platforms

  • AWS, GCP, Azure
  • Wiz, Qualys, ShiftLeft
  • Kubernetes (EKS, GKE)
  • Git, Jira, ServiceNow
  • ArgoCD, FluxCD, TailScale

Operating Systems

  • Linux (Kali, RHEL, Ubuntu)
  • Windows Server
  • MacOS

Certifications

GCP Associate Cloud Engineer

HashiCorp: Terraform Associate

CompTIA Security+

CompTIA CySA+

Azure Fundamentals

AWS Certified Cloud Practitioner

CompTIA Project+

CompTIA A+

Featured Projects & Experience

SailPoint IAM Migration to Azure

Supported the migration by creating infrastructure-as-code scripts to build the entire environment in Azure. Also architected a robust vulnerability management program using Qualys and Wiz, ensuring 100% availability and strict cost control for this critical internal tool.

Azure IaC Wiz Qualys Azure Pipelines

ForgeRock IAM Migration to GCP

Led the cloud migration by creating all infrastructure-as-code to deploy the customer-facing ForgeRock platform on GCP. Also implemented a comprehensive vulnerability management solution with Qualys and Wiz, maintaining 100% availability for a fortune 20 retailer's mobile app and web sign-ins.

GCP IaC Leadership Terraform GitHub Actions

Personal Website & Home Lab

This portfolio site is self-hosted in my Proxmox lab and served via a Cloudflare Tunnel. The rest of my home lab utilizes Terraform for IaC, Vault for secrets, ArgoCD for GitOps, and GitHub Actions for CI/CD.

Proxmox Cloudflare ArgoCD Terraform Vault

Get In Touch

Have a question, an opportunity, or just want to connect? Feel free to send me a message.